Security problem and redirection.

deroxdj
(@deroxdj)

5 years, 1 month ago

I see there is no support for this pluins, there is support for silly and not so important questions, I am quite disappointed.
Who of these adds a function that redirects the page when closing section destroy all, in allow mode,
Because the content is exposed and vulnerable, I am talking about security problems and this plugin is made to have security and privacy of a user and protection of some content so that it is not replicated or repeated.

—————
spnish

Veo que no hay soporte a este pluins, hay soporte para preguntas bobas y no tan importantes, me decepciona bastante.
Quien de los presentes añade una función que redireccione la página al cerrar sección destroy all, en modo allow,
Porque el contenido queda expuesto y vulnerable, estoy hablando de problemas de seguridad y este plugins está hecho para tener seguridad y privacidad de un usuario y protección de algún contenido para que no se replique o repita.

Viewing 7 replies - 1 through 7 (of 7 total)

Plugin Author Joel James
(@joelcj91)

5 years, 1 month ago

Hey @deroxdj,

Sorry, but I don’t understand the security problem you mentioned. Could you please explain a bit?

Thread Starter deroxdj
(@deroxdj)

5 years, 1 month ago

The pligins works correctly I congratulate you and in blocking mode it works wonderfully, and apply the bypass function and everything perfect for the administrator,

Let me explain, in the allow mode the plugins works wonderfully too, but there is a risk of destroying the session by entering the other device, the old session is exposed the content, as long as it is not updated or F5 is pressed.
In short, my project lies in offering video tutorials, streaming courses and content exclusively for a single user, by replicating, sharing the username and password, the content remains open and exposed while they enter from the other device.

My request is: by destroying the session in allow mode, that the previous page or the previous session, redirect or update or by default automatically refresh the page.

Plugin Author Joel James
(@joelcj91)

5 years, 1 month ago

Hi @deroxdj,

I get your point. But it’s not a security issue, but an advanced feature 🙂

But, yeah we should find a way to automatically refresh all existing sessions in allow mode. Few other users have already requested this feature and I have already started working on an addon for this.

Hopefully it will be released by the end of April or first week of May.

Regards,
Joel
Thread Starter deroxdj
(@deroxdj)

5 years, 1 month ago
Thank you very much and sorry for the Translation I am Latin American.

A year ago I made a donation, I was expecting another for this next project.
- This reply was modified 5 years, 1 month ago by deroxdj.
ulafox
(@xintv123)

5 years ago

Hello, I also encountered a related problem. In the allowed mode, the previous login session should be destroyed to continue the current login. And if you use multiple browsers or devices to log in and test, you will find that the plug-in often has an infinite loop of unable to log in, and the administrator can’t log in. We should be compatible with the problem of multi-device login (the above content is from Google translation)

Plugin Author Joel James
(@joelcj91)

5 years ago

Hey @xintv123,

There is no infinite loop issue reported yet. Could you please explain?

ulafox
(@xintv123)

5 years ago

What I mean is that if you set the disallowed mode, you will often fail to log in. I tested it between browsers. Even if all the browser windows are logged out, I still can’t log in. Remind the device to allow it. The maximum number of has reached the upper limit, and the operating mode is selected as if the previous session still exists

Viewing 7 replies - 1 through 7 (of 7 total)

The topic ‘Security problem and redirection.’ is closed to new replies.