I am using joomla 3.0 and i want to when user open joomla 3.0 site then first open only login page then after login he can access website.
Thanks For Advance
You can put the site in offline mode.
So the site will display the login page.
Remember to grant permissions to the users to access the offline site!
If you want to "protect" the whole site with login the best option is to turn the site off and then the user will need to login after opening the intranet page. Its probably the cleanest way how to to it without modules/plugins.
As we are doing it in my company (we are also running intranet on Joomla!) is, that all the articles are set to registred and the landing page of intranet just contain warm welcome and login form.
One thing to mention: Forcing this login for viewing some article/other content is not secure at all, mostly the local instalation will run on database with root access without pass (default setting) and with unecrypted database easily accessible. This is something to consider. If you are running this intranet in small company with loyal employees or without sensitive information you should be fine if not you should put more stress on the security issues.
Related
I have been researching this issue for a while and didn't get an answer for it. We have successfully implemented simplesaml with open directory (for authentication credentials), Moodle and Google. right now we are stuck in adding Joomla to this single sign on process. I have used: https://github.com/OpenConextApps/OpenConextApps-Joomla to add the login menu item to authenticate to the simplesaml page and it works but after entering the credentials in the simplesaml login page we are being redirected to the Joomla login page. We are using the Joomla access levels to protect the resources after the login.
Thanks for the help.
Take a look in this SAML plugin for Joomla:
https://onelogin.zendesk.com/entries/20066026-Configuring-SAML-for-Joomla
This plugin not use simplesamlphp, instead use onelogin php saml toolkit.
Related to your problem, could be a session conflict issue. Try to configure simplesamlphp SP to use memcache as session storage (so never gonna conflicts with joomla session storage).
https://simplesamlphp.org/docs/stable/simplesamlphp-maintenance#section_2
Your extension is probably not implementing/preserving the Joomla return parameter during the SSO login flow.
If you can go for a paid extension, take a look at:
https://creativeprogramming.it/it/apps/joomla-extensions/samlogin
it solves your issues as it cares a seamless integration of simpleSAMLphp with any aspect of Joomla (including ACLs rules and a clean handing of the login return URL):
PS. I'm the developer.
I am working at a company which uses an intranet site as a portal to a bunch of other local sites. Unauthorized people in the company have been accessing it, so we want to secure it. Users, when accessing the website for the first time will have to enter a username and password. If they are on a certain group in the Active Directory, they will be given access and their credentials will be stored so that they don't need to enter their username/password again. I have looked into NTML, ASP.NET, but am not sure how to proceed.
Any thoughts/ideas are greatly appreciated.
Dump your solution. Use Integrated Windows Authentication, namely Kerberos, in IIS. It will automatically pass all credenentials to your server. Note that every participant must be part of your AD domain.
How can I make my TeamCity site be a public site. I don't want the landing page when someone goes to my TeamCity site to be the login page but instead just the Overview page that lists out all of the projects.
Making everyone login as a guest from the login page seems like a worthless step that I'd rather them not have to do.
The only practical way I can think of doing this currently is by providing the guest login as a direct link. For example, Castle Windsor allows the guest login and you can go directly there by browsing to:
http://builds.castleproject.org/guestLogin.html?guest=1
this is different from browsing to
http://builds.castleproject.org/
which takes you to the login page.
Is it possible to implement single signon for Joomla 1.5 backend and frontend. I find it kind of redundant that when the admin for instance is logged in at the backend and needs to do some user function on the frontend has to login again. Is there a way of implementing a single signon?
Joomla! is implemented as two separate applications the front-end initiated from /index.php and the back-end administration from /administrator/index.php as such they have separate user sessions and states.
The separation is a standard security approach, while you could write your own mod_login to do this I wouldn't advise it unless you're very clear on what you're doing.
Having said that, there are 255 Joomla! extensions in the Access & Security ——> Site Access section dealing with logins. Have you tried looking there?
This joomla extension can do that.
http://www.everlive.net/joomla-extensions/15-joomla-admin-from-frontend.html
Just login to frontend as an admin user. You will be logged-in automatically to backend. Further it gives you useful direct links for various backend operations like article add, edit, publish, unpublish etc. Same kind of links are available for modules and menu items.
I have a website already running made with CakePHP, which has its own login system using the Auth component.
Now I'm going to create another website using moodle, hosted in the same server. Is there any way to share the user session between those 2 websites?
For example, if a user logs into the moodle website and clicks a link to a page of the other website, he is not asked to log in again, since the system recognises that he is already logged in.
I guess that one thing to do would be to tell moodle (somehow) to use same table of users in the database that the CakePHP website is already using. And then tell the CakePHP website to accept the sessions created in that other website. Something like this right?
But I don't know how to do those things or if they even possible, any advice on how to approach this would be very helpful.
Single sign-on (SSO) is not currently a trivial thing to do in Moodle.
Some other approaches you may consider are:
Use external authentication in Moodle and configure it to use Cake's database. Does not provide SSO but tells Moodle to use Cake's user accounts.
Configure both Moodle and Cake to use a common authentication system like LDAP, POP3 or CAS. Depending of your choice it is possible that you may achieve SSO.
More information about Moodle authentication plug-ins in this page:
http://docs.moodle.org/dev/Authentication_plugins