Inspiring

Question

Limiting User to One Login

Forum|Forum|14 years ago
October 31, 2011
2 replies
983 views

Greetings,

The goal is: Stop multiple logins with same user info

CF Version: 8,0,1,195765

MySQL Version: 5.5.14

DW Version: CS5

<cfapplication

name="yfirsUserLogin"

clientmanagement="Yes"

sessionmanagement="Yes"

sessiontimeout="#CreateTimeSpan(0,0,20,0)#"

applicationtimeout="#CreateTimeSpan(0,0,20,0)#">

</cfif>

--- Query ---

SELECT record_id, agency_id, user_id . . . .

FROM agency_users

WHERE

user_login_name = <cfqueryparam cfsqltype="cf_sql_varchar" value="#login#"> AND

user_login_password = <cfqueryparam cfsqltype="cf_sql_varchar" value="#password#">

</cfquery>

--- Login checker ---

thisSession = sessions[loopSession];

thisUser = thisSession.userID;

if(thisUser EQ user_info.user_id){

thisSession.setMaxInactiveInterval(1);

break;

}

</cfscript>
</cfloop>

--- additional code here ---

</cfif>

This topic has been closed for replies.

L

Leonard_BAuthor

Inspiring

Hi Owain,

First thing is that for whatever uknown reason, my post got posted before I could add the rest of the information in reference to the actual question and I apologize for that.

-- Answers ---

Q1: Have not learned / had positive experiences with cfc(s) and the application.cfm has been working fine.

Q2: With what I have been using for login allows for a user to login from multiple computers.

Q3: Access to the section of the web site is a paid access. - base subscription = 3 user logins

Q4: How do I block users from purchasing base subscription and allowing ie: 20 users to login without paying additional subscriptions?

Thanks in advance.

Leonard B

Owainnorth

Inspiring

Okay, that's all good except for one - Application.cfm. I really would look seriously at .cfc - it's far more powerful and, learning aside, there is no reason it should give you issues, only benefits. I honestly don't even know how this can be done with App.cfm, as I don't believe it has the concept of SessionEnd. Using an app.cfc, you'd do something like this:

<!--- Fires on the first request to the application

</cffunction>

<!--- If the person's not logged in, send them to the login page, but protect against loops

</cfif>

</cffunction>

<!--- Decrement the number of logins you have on file for this Customer

</cflock>

</cfif>

</cffunction>

</cfcomponent>

Then on your login page, do something like this once you've validated their credentials:

<!--- First make sure there's a dictionary entry in the Application scope tracker struct

</cfif>

</cfif>

</cflock>

That would achieve what you're after, you'd have a system which kept track of everyone logged in, and automatically decrements the value at the end of someone's session. Application.cfc is not something to be feared

Owainnorth

Inspiring

Four questions:

1 - Why aren't you using Application.cfc?

2 - If a user's already logged in, presumably they would never get a login page? So how would they log in more than once?

3 - Why is it a problem if they do?

4 - What's the actual question?

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded