[Solved]: How to disable password changes for user? [Solved]: How to disable password changes for user?
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

[Solved]: How to disable password changes for user?

Started by cello, June 08, 2009, 02:11:32 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

cello

Hi
I need to create a gallery that either has a single password to view the images (no username) or I can set a single username for a group of people (a club name) but do not want them to be able to change the password otherwise all those people using the group username account bar the one that changed the password will no longer be able to login?

Have had a look in the admin/config and cannot find a option to disable password changes??

The other question of course is can multiple users log on with the same account/password and does it auto logout the user if no activity in x minutes?

Any help, tips or advice would be appreciated.

Thks

Joachim Müller

Using one account for several people is just not a bright idea. I strongly suggest reviewing that idea. Apply password protection using .htaccess instead to allow access of a particular group. Anyway, if you must do that, remove the "change my password" button from the menu user profile (or even better: remove the "my profile" link from the user's administration menu) and cripple the corresponding code in profile.php. However, as I suggested: this doesn't make any sense - you just disanled password changes for that particular user then. You haven't accomplished all those other changes that you would need: technically, one user would be accessing the site from multiple PCs, so the hits tracking, the comments system, the rating, the ecards feature etc. etc. would need to be changed as well to work properly. If you're a coder: go ahead. Otherwise: do as I suggested and apply a .htaccess authentification. I can see where you're coming from: you're not the first person to request that feature. Usually, the sharing of one account by several persons is requested if the visitors are deemed not to be particularly computer-savy. People like you who request that feature think that it would be an advantage for the low-skills visitors that they don't have to fiddle with logging in. The opposite is the case in my experience.
But if you think about it, you'll notice that it's a bad idea. You don't have to take my word: just search the board, as this has been discussed many times over.

Alternatively: take a look into the album password feature. If you're the only one who's going to upload, that will be the ideal solution for you: disable registration in config. Apply one album password to all your albums. Then send the password to your firnds. They will be required to log in once, that's it. No separate user accounts. Full support. Happy users. Easy updates.

cello

Great advice thank you, the album password was the feature I was looking for but failed to see the wood for the trees.

Thanks Again