Authenticating by IP?

Next topic

Author	Message
Petter Arneson	Thursday 29 December 2005 1:19:27 am Im currently working on a project, using 3.7.2, where we have to include an iframe from another server. They want to use user id, session id and ip to authenticate the user. I send this information to the iframe, and they send it back for authentication. E.g. a script that returns true or false. I can send the users ip since this is done by a templateoperator for current user. But how can I get this users ip in the auth script? I can get the correct user, but as far as I can see ez doesn't save ip in session or user object information. I probably could alter the session table, to include ip, but I dont want to mess to much with the kernel. Does anyone know exactly where this could be done? I think session id is enough to authenticate the correct user, but how do I convice them of this? www.vzt.no
Kristian Hole	Friday 30 December 2005 4:15:43 am Hi This is a patch for 3.5.1 which allows one specific user to log in from one specific IP. You can probably get some idea about how to do something like you want from this. --- pre_check.php.orig 2005-04-06 15:24:51.020472000 +0200 +++ pre_check.php 2005-04-06 16:10:16.603120456 +0200 @@ -84,6 +84,21 @@ $requireUserLogin = ( $ini->variable( "SiteAccessSettings", "RequireUserLogin" ) == "true" ); $check = null; $http =& eZHTTPTool::instance(); + + //---LOGINONIP-HACK + if ( $ini->hasVariable( 'LoginOnIP', 'IPAddress' ) && $ini->hasVariable( 'LoginOnIP', 'UserID' ) + && $_SERVER['REMOTE_ADDR'] == trim( $ini->variable( 'LoginOnIP', 'IPAddress' ) ) ) + { + include_once( 'kernel/classes/datatypes/ezuser/ezuser.php' ); + $userID = ( int ) $ini->variable( 'LoginOnIP', 'UserID' ); + $user = eZUser::fetch( $userID ); + if ( ! is_object( $user ) ) + eZDebug::writeDebug( "Unable to fetch user with id $userID for IP login", "LoginOnIP" ); + else + eZUser::setCurrentlyLoggedInUser( $user, $userID ); + } + //---/LOGINONIP-HACK + if ( !$requireUserLogin ) return null; // $uri =& $GLOBALS['eZRequestedURI']; Kristian http://ez.no/ez_publish/documenta...tricks/show_which_templates_are_used http://ez.no/doc/ez_publish/techn...te_operators/miscellaneous/attribute

Author

Message

Thursday 29 December 2005 1:19:27 am

Im currently working on a project, using 3.7.2, where we have to include an iframe from another server. They want to use user id, session id and ip to authenticate the user. I send this information to the iframe, and they send it back for authentication. E.g. a script that returns true or false. I can send the users ip since this is done by a templateoperator for current user. But how can I get this users ip in the auth script? I can get the correct user, but as far as I can see ez doesn't save ip in session or user object information. I probably could alter the session table, to include ip, but I dont want to mess to much with the kernel. Does anyone know exactly where this could be done? I think session id is enough to authenticate the correct user, but how do I convice them of this?

www.vzt.no

Kristian Hole

Friday 30 December 2005 4:15:43 am

This is a patch for 3.5.1 which allows one specific user to log in from one specific IP. You can probably get some idea about how to do something like you want from this.

--- pre_check.php.orig  2005-04-06 15:24:51.020472000 +0200
+++ pre_check.php       2005-04-06 16:10:16.603120456 +0200
@@ -84,6 +84,21 @@
     $requireUserLogin = ( $ini->variable( "SiteAccessSettings", "RequireUserLogin" ) == "true" );
     $check = null;
     $http =& eZHTTPTool::instance();
+
+       //---LOGINONIP-HACK
+    if ( $ini->hasVariable( 'LoginOnIP', 'IPAddress' ) && $ini->hasVariable( 'LoginOnIP', 'UserID' )
+         && $_SERVER['REMOTE_ADDR'] == trim( $ini->variable( 'LoginOnIP', 'IPAddress' ) ) )
+    {
+        include_once( 'kernel/classes/datatypes/ezuser/ezuser.php' );
+        $userID = ( int ) $ini->variable( 'LoginOnIP', 'UserID' );
+        $user = eZUser::fetch( $userID );
+        if ( ! is_object( $user ) )
+            eZDebug::writeDebug( "Unable to fetch user with id $userID for IP login", "LoginOnIP" );
+        else
+            eZUser::setCurrentlyLoggedInUser( $user, $userID );
+    }
+       //---/LOGINONIP-HACK
+
     if ( !$requireUserLogin )
         return null;
 //     $uri =& $GLOBALS['eZRequestedURI'];

Kristian

http://ez.no/ez_publish/documenta...tricks/show_which_templates_are_used
http://ez.no/doc/ez_publish/techn...te_operators/miscellaneous/attribute

eZ debug

Timing:	Jan 18 2025 19:23:03
Script start
Timing:	Jan 18 2025 19:23:03
Module start 'layout'
Timing:	Jan 18 2025 19:23:03
Module start 'content'
Timing:	Jan 18 2025 19:23:04
Module end 'content'
Timing:	Jan 18 2025 19:23:04
Script end

Main resources:

Total runtime	0.6925 sec
Peak memory usage	4,096.0000 KB
Database Queries	54

Timing points:

Checkpoint	Start (sec)	Duration (sec)	Memory at start (KB)	Memory used (KB)
Script start	0.0000	0.0077	588.9297	152.6094
Module start 'layout'	0.0077	0.0032	741.5391	39.4141
Module start 'content'	0.0110	0.6799	780.9531	523.2891
Module end 'content'	0.6909	0.0016	1,304.2422	12.1875
Script end	0.6925		1,316.4297

Time accumulators:

Accumulator	Duration (sec)	Duration (%)	Count	Average (sec)
Ini load
Load cache	0.0032	0.4549	16	0.0002
Check MTime	0.0014	0.1955	16	0.0001
Mysql Total
Database connection	0.0024	0.3521	1	0.0024
Mysqli_queries	0.6464	93.3427	54	0.0120
Looping result	0.0005	0.0788	52	0.0000
Template Total	0.6614	95.5	2	0.3307
Template load	0.0023	0.3359	2	0.0012
Template processing	0.6591	95.1701	2	0.3295
Template load and register function	0.0002	0.0240	1	0.0002
states
state_id_array	0.0012	0.1672	1	0.0012
state_identifier_array	0.0008	0.1207	2	0.0004
Override
Cache load	0.0019	0.2758	9	0.0002
Sytem overhead
Fetch class attribute can translate value	0.0007	0.0968	2	0.0003
Fetch class attribute name	0.0015	0.2125	3	0.0005
XML
Image XML parsing	0.0010	0.1492	2	0.0005
class_abstraction
Instantiating content class attribute	0.0000	0.0037	3	0.0000
General
dbfile	0.0007	0.1050	16	0.0000
String conversion	0.0000	0.0014	4	0.0000
Note: percentages do not add up to 100% because some accumulators overlap

Templates used to render the page:

Usage	Requested template	Template	Template loaded
1	node/view/full.tpl	full/forum_topic.tpl	extension/sevenx/design/simple/override/templates/full/forum_topic.tpl
2	content/datatype/view/ezxmltext.tpl	<No override>	extension/community_design/design/suncana/templates/content/datatype/view/ezxmltext.tpl
2	content/datatype/view/ezxmltags/paragraph.tpl	<No override>	extension/ezwebin/design/ezwebin/templates/content/datatype/view/ezxmltags/paragraph.tpl
1	content/datatype/view/ezimage.tpl	<No override>	extension/sevenx/design/simple/templates/content/datatype/view/ezimage.tpl
1	content/datatype/view/ezxmltags/literal.tpl	<No override>	extension/community/design/standard/templates/content/datatype/view/ezxmltags/literal.tpl
1	print_pagelayout.tpl	<No override>	extension/community/design/community/templates/print_pagelayout.tpl
Number of times templates used: 8 Number of unique templates used: 6

Time used to render debug report: 0.0001 secs