rejetto forum

HFS account at same time double login...

Guest · 8 · 5509
« previous next »
Pages: 1

0 Members and 1 Guest are viewing this topic.

kycken

  • Guest
on: April 09, 2009, 05:58:25 PM
Hi!

I wanna a function is if...

Account Name:abc password 123 Login at A area,

but in B area use same account login. HFS will tell the user this login name

have login in another side then it don't double login or HFS will pause the account!!!

Is this function possible or not??

thank you(^_^)

Offline rejetto

  • Administrator
  • Tireless poster
  • *****
    • Posts: 13523
    • View Profile
Reply #1 on: April 10, 2009, 09:10:58 PM
what's an "area" ?

Quote
HFS will tell the user this login name

i don't understand

Offline bacter

  • Operator
  • Tireless poster
  • *****
    • Posts: 681
    • View Profile
Reply #2 on: April 11, 2009, 10:06:09 AM
It seems to me that he wants to avoid double login from two computers with the same account name.

But with basic autentication there seems no way to avoid it, as HFS has no list of logged-in users.
your computer has no brain - use your own !

Offline TSG

  • Operator
  • Tireless poster
  • *****
    • Posts: 1935
    • View Profile
    • RAWR-Designs
Reply #3 on: April 11, 2009, 10:32:08 AM
Well you probably cant limit it to one computer... however you could limit it to IP's. One active logged in user session / ip address. It would only be a problem if someone has a dynamic IP and it changes while downloading a large protected file, however the browser/downloader should just prompt a login. Most dynamic ip's wont change unless forced by the modem with a redial, that's how all the ones I have had are anyway.

It's an idea.

kycken

  • Guest
Reply #4 on: April 11, 2009, 01:25:57 PM
it mean only accept one user name login to HFS at the time!

Another person can't use same login name to login HFS!!

is possible? ???

Offline rejetto

  • Administrator
  • Tireless poster
  • *****
    • Posts: 13523
    • View Profile
Reply #5 on: April 12, 2009, 10:48:05 AM
there's no such feature available.
but someone may script it....

Offline bacter

  • Operator
  • Tireless poster
  • *****
    • Posts: 681
    • View Profile
Reply #6 on: April 12, 2009, 11:00:50 PM
with basic authentication there is not much to script for such a feature.

You could do something with IP's or partial IP's (checking provider) and using User-agent from the request header (browser and ip related to a account) to do further checking.

But this gives a lot of cases that canĀ“t match any rule:

- There is no logout in HFS, so when will we consider that a user is logged in? When he did no request in the last xx minutes?

- Consider users are accessing from a campus or company network ... ten users may appear as one user with the same IP! nothing to do !

your computer has no brain - use your own !

Offline rejetto

  • Administrator
  • Tireless poster
  • *****
    • Posts: 13523
    • View Profile
Reply #7 on: April 12, 2009, 11:13:49 PM
Quote from: bacter on April 12, 2009, 11:00:50 PM
- There is no logout in HFS, so when will we consider that a user is logged in? When he did no request in the last xx minutes?

on this specific task, having the logout would not solve the problem, because most people don't "logout" from websites, but just close the tab/window.
this feature should anyway rely on a sort of timeout.

Quote
- Consider users are accessing from a campus or company network ... ten users may appear as one user with the same IP! nothing to do !

indeed this must use cookies (or sessions). but if you truly want, you can use cookies with the current authentication system.

Pages: 1