Transfering postnuke users to cpg users Transfering postnuke users to cpg users
 

News:

CPG Release 1.6.26
Correct PHP8.2 issues with user and language managers.
Additional fixes for PHP 8.2
Correct PHP8 error with SMF 2.0 bridge.
Correct IPTC supplimental category parsing.
Download and info HERE

Main Menu

Transfering postnuke users to cpg users

Started by greentin, December 25, 2004, 10:27:29 PM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

greentin

December 25, 2004, 10:27:29 PM
Hi, I've searched the board but I've not found any answers...
I want to transfer postnuke user to cpg and after that desinstall postnuke and just use the coppermine gallery as a standalone script...
So I've installed pnCPG to transfer my users to my CPG 1.3.0... and after that I've done an update to 1.3.2...
My users can't login now... I've check in my mysql database in the cpg130_users table and all the password are encrypted (like 28ne827fk) and my admin password isn't...

So what did I do wrongly? Is it normal that my password isn't encrypted? Is it not an security issue?
Sorry for my ugly english, I speak french...
Happy Holidays and thanks for futur help!

greentin

kegobeer

#1
December 25, 2004, 10:36:25 PM
Coppermine doesn't encrypt passwords, so your users will have to log in with the encrypted password (you'll have to give them the encrypted password).  Or you can have them contact you and supply a new password that you can use to replace the encrypted password.
Do not send me a private message unless I ask for one.  Make your post public so everyone can benefit.

There are no stupid questions
But there are a LOT of inquisitive idiots

casNuy

#2
December 26, 2004, 06:09:09 PM Last Edit: December 26, 2004, 09:09:07 PM by casNuy
When you transferred your PN users to Coppermine, pnCPG assigns a random password to your users. these are not encrypted.(opposite PN which does encrypt the password hence the reason why I cannot use the same password).
Your users should logon with this password and change it as they like.

Cas

kegobeer

#3
December 26, 2004, 06:32:25 PM
Thanks for the explanation, Cas.  I wasn't aware of how PN handled the passwords.
Do not send me a private message unless I ask for one.  Make your post public so everyone can benefit.

There are no stupid questions
But there are a LOT of inquisitive idiots

cutandpaste01

#4
May 12, 2005, 01:31:53 PM
I've checked the button to "Update Coppermine users from Postnuke" in the PN CPG 2.5 module admin section and clicked on the Update button.

Quoteg) Update Coppermine users from Postnuke  [ ]
Mass update of all Postnuke users into Coppermine on demand(This option will be unchecked as soon as soon as you hit the update button)

However my PN users don't get moved over into the Coppermine Users table.

Is there any combination of settings in the Coppermine/PN CPG 2.5 settings screens that could cause a conflict if I've got them set wrong?

Any ideas?

Thanks,

Simon
I can't remember if I took the Red pill or the Blue pill, now I'm all confused...

casNuy

#5
May 12, 2005, 09:01:16 PM
If you dont know which pill you took, i wonder if you can answer the following question, but let's try.
Did you fill correctly the users table of Postnuke and of Coppermine ?
I assume there was no error message ?

Cas

jami

#6
June 23, 2005, 11:24:38 AM
QuoteWhen you transferred your PN users to Coppermine, pnCPG assigns a random password to your users. these are not encrypted.(opposite PN which does encrypt the password hence the reason why I cannot use the same password).
Your users should logon with this password and change it as they like.

this doesn't make much sense ... at this point one can take pn_uname and pn_email and insert them by hand in the cpg_users table with a fake password, tell the user to login with this password and then change it ...
if the advantage is that a user should not register again in coppermine, but the admin must comunicate him a new password every time, where is the deal with pncpg?
maybe pncpg can insert the postnuke encrypted password in the db and one can modify the control /cpg133/login.php, line 34 :
Code Select
    $results = db_query("SELECT user_id, user_name, user_password FROM {$CONFIG['TABLE_USERS']} WHERE user_name = '" . addslashes($HTTP_POST_VARS['username']) . "' AND BINARY user_password = '" . addslashes($HTTP_POST_VARS['password']) . "' AND user_active = 'YES'");
so that $HTTP_POST_VARS['password'] is encrypted in the same manner as postnuke.
but i can be wrong ... i really don't have looked coppermine code so much ...

sorry for the english...

casNuy

#7
June 26, 2005, 01:22:40 PM
This could be possible but since Coppermine does not use encryption and I try to avoid standard scripts, this is not there.
The trick here is that only you have access to the db so you would be the only one who could do that.
cas

jami

#8
June 26, 2005, 06:01:59 PM
i've already done it ( with .760rc4b and pncpg 2.6 ) and everything works fine.
there are 2 lines of code in login.php to change ( password control and cookie generation ), and three in pncpg ( to store the pn_users encrypted password, in place of the random generated pass ).
I understand that a thing like this would cause an eventual problem when upgrading the standalone application, or a little confusion with non-so-informed cpg users, but since one will do by himself, this hack is really simple and really useful.

keep up the good work at nuy.info
bye
Print
Go Up Pages1
User actions