Thread

I want to completely lockout a website (i.e. all URLs or template group|templates) except for selected members.  I am assuming one approach is to set the General Configuration parameter “Is System On?” to “No”.  The GC dialog says that only Super Admins can then view the site.  Must you then create a template with a Login Form Tag to get the username/password, and if so, how must that template be defined/structured so that it is executed? 

Is there another way to accomplish this?

In the above approach, only a member with Super Admin authority could view the site.  Is there a way that would allow selected members without SuperAdmin authority access to the site?

Thanks.

Jonathan

In member group permissions you can set any member group to have the ability to view the site while it is offline. You can create a new member group (or edit an existing one) to be able to view the site while it is offline.

OK, I see how you set the permission in the member group preferences.  Thanks.  But I’m still not sure how you establish the login to the site (as opposed to the Control Panel).

If you have your members section set up, you can just include a link to the existing front-end login page.

Otherwise, you can include a login form on any template.

Does that help?

Thanks for the suggestions.  I see how I can set this up via the Member Management Module.  One bit of clarification:  you mention the “existing front-end login page”.  Are you assuming I already created one or is there some sort of default available within EE.

Also I see I can use the “access” controls in Template Manager to “Enable HTTP authentication”.  Unfortunately this means the username/password is unencrypted.  Anyway to invoke “https”?

Thanks for the suggestions.  I see how I can set this up via the Member Management Module.  One bit of clarification:  you mention the “existing front-end login page”.  Are you assuming I already created one or is there some sort of default available within EE.

I was just referring to the login page that’s part of the member profile templates. If you’re using a member profile trigger word, you should be able to see all the member profile templates on the front-end of the site.

Also I see I can use the “access” controls in Template Manager to “Enable HTTP authentication”.  Unfortunately this means the username/password is unencrypted.  Anyway to invoke “https”?

It should use HTTPS if the person trying to access the page is already doing so through a secure connection. In short, that’s something you’d set up on your server (to make sure all pages are HTTPS).

I think I have the info I need now.  Thanks for all your help.

Glad to hear it, nroptions! If anything else comes up, please let us know so that we can assist.

Thank you!