Right on.. Thanks,
Will give that a try. Dave -----Original Message----- From: brian [mailto:[email protected]] Sent: March-26-09 8:12 PM To: [email protected] Subject: Re: Login Security That'd be vulnerable to locking people out because the last time they logged in they didn't specifically log out. I don't see anything in the API to do this but, if you could pass a session ID to see if it was active, you could record the session_id along with the user_id in a table. So, when some tries to log in, check the logins table. If the user_id is there, then see if the session_id fromthe DB returns anything. On Thu, Mar 26, 2009 at 2:00 PM, Dave Maharaj :: WidePixels.com <[email protected]> wrote: > Just a general question. > > Can I restrict a user to only allow the user to be logged in from one > location...sounds stupid but some people share acct info with friends > / family so this would restrict a user from logging in only once. > > So for example on login update a field in the user table LOGGEDIN to 1 > and on logout set it to 0. So if Jeff shares his acct info with his > wife and Jeff logs in then his wife tries to log in (it checks > LOGGEDIN if set to 1 someone is already logged in on that acct) she > cant because Jeff is already logged in. > > Or does cake take care of this? If so are both allowed to login in at > the same time? Does 1 get the boot? > > Dave > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---
