On our Magento 1.7.0.2 site CMS pages (landings, contact us etc.) that have the checkbox 'Visible for NOT LOGGED IN' checked are at present only visible to users that are logged in. If you go to one of the pages not logged in, it automatically redirects you to the login page. If you are logged in, then you can view the page.
I'd be grateful to get some help on finding out why these pages ignore the 'Visible for NOT LOGGED IN' option and force the user to login before the page can be viewed.
Related
This is T3 v6.2.36 and I have a login page with a subpage. The subpage is restricted to login users and hence does not appear in the menu before login. When I click on the login page in the menu and enter the credentials I do not get redirected to the subpage. I have set the redirect target page in the user group. Also I have set the login plugin to "redirect defined by user group". It sounds so easy and intuitive, yet it doesn't work. What am I missing?
I have a website that accepts Facebook login. When the user clicks the FB login button, it logs the user into his/her FB, retrieves the user info, and uses that info to login the user at my own backend. After successful login, the page jumps to the main site. For logout, it's the same. I first log the user out of his Facebook, and then out of my own backend (flush the session).
The problem is that the FB login at my site gets mixed with Facebook sessions at other places. If a Facebook loggedin user logs out (FB.logout()), his/her Facebook website will also be logged out. And if the user has logged in his FB somewhere else, when he comes to my site, the FB login button shows a already-logged-in state. But the getLoginStatus() actually shows the status as 'unknown' instead of 'connected', so the page doesn't jump. He has to logout, and then login again, which is pretty weird.
I wonder if there's a descent way to handle this, separating FB sessions at different places. This also applies to other third party authentication issues.
I have implemented SingleSignOn for my DNN site say www.example1.com. There is another site called www.example2.com. Both the sites will redirect to a common login page which uses a webservice to authenticate the users from external database.
The problem is, when i clicks on login button in example1.com, the user will be redirected to common sso login page, and after successful authentication, he will be redirected back to the original site. If I opens a new tab and enters the url that example2.com, the user is not being logged in.
But, if i clicks on login button in example2.com, the user is automatically getting logs in.
What I want exactly is, when I logs into one site in first tab and opens another site in the second tab, on the page load only the user should be logged in, but not on the login click.
How can I handle this issue ? Any help is appreciated.
I do something similar to this.
Your database should track users currently logged in. Before you redirect to the common login page, you should check if the user is logged in. Your example2.com is not checking to see if the user is logged on before redirecting to the common login page.
Here is how ours works:
Both sites must check for cookie/Token before redirecting
User Logs into site and is Authenticated
Writes User to Token database
Stores Token in cookie with expiration
Subsequent requests read the token from the cookie and validate against Token database
When user logs out, cookie and database entry are deleted
If user does not log out properly, you must clean up tokens on a set interval
I have installed the fbconnect module of magento on my website and the 'Login with Facebook' button is there on this page:
https://www.scopial.com/customer/account/login
Whenever a user clicks this button it can be logged into the site using facebook account. But when the user is already logged into the site with facebook and when the user logged out of his facebook account and then comes back to the magento site and logged out from the magento site and then coming back to login page again, the facebook button disappears from the site.
I think this may be the issue of browser cookies as when i am clearing my browser's cookies, the facebook button is appearing there.
That account appears to be suspended in your example. However, you can find a lot of helpful information now on Facebook's developers website. See specifically https://developers.facebook.com/docs/authentication/
In my application there is a login page after login the user will get access to the functionalities of the application.
Now there is a back button clicking on which the user will go on to the home page now my requirement is that when the user returns to the home page it sholud not ask for the login again that is the login page should be disabled it should directly go on to the next page.
How to do that???
Please help me.......
Check to see if the user is logged in. If not, present the login view modally, if the user is logged in, skip that step.