Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chriss Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Prevent Multiple Logins

Status
Not open for further replies.
TL56

TL56

Programmer
Joined
Feb 1, 2007
Messages
4
Location
US
We would like to limit the number of times a user can login into our portal.
Thus, if the user is currently logged in and he/she attempts to login again we
want to prevent them from logging in hence limit one login per user. Does anyone know how to do this? It has to be done at the server level.
 
Sort by date Sort by votes
It has to be done at the server level.
Click to expand...

No it doesn't. The user's credentials and login status are not known at the server level. It sounds like you have a very poorly written script. It should keep track of sessions. It should also not allow them to login unless they have cookies enabled. Anything at the server level would involve allowing or blocking ip addreses or using authentication, generally with .htaccess.
 
Upvote 0 Downvote
Thanks for replying.
Currently we use an LDAP to authenticate users, but it doesn't have the capability to restrict the number of logins. Are you stating that we can utilize .htaccess to solve this issue?
 
Upvote 0 Downvote
No I was saying that you can use system level authentication using it. I'm not quite clear on what you mean by multiple logins. Do you mean once and only once in a life time or only one at any given time?

 
Upvote 0 Downvote
What I mean is the user logs in on one machine then goes to another machine and logs in again while the other session is still active. I need to make it so when the second login attempt is made it is denied since there is already an active connection with that username and password.
 
Upvote 0 Downvote
Hi

TL56 said:
I need to make it so when the second login attempt is made it is denied since there is already an active connection with that username and password.
Click to expand...
That usually is done in the other way : the second login succeeds but the first is invalidated. This is how big portals usually do and is recommended because it is much user friendly.

Feherke.
 
Upvote 0 Downvote
How is it done the other way where the second login succeeds but the first is invalidated.
 
Upvote 0 Downvote
Hi

TL56 said:
How is it done the other way where the second login succeeds but the first is invalidated.
Click to expand...
If your user's list would be in a database, is very simple
[ol]
[li]in the user table add a field of type character and lets call it session[/li]
[li]in the login script add an SQL command to [tt]update[/tt] the value of the session field with the current session identifier[/li]
[li]in every other page check if the current session identifier is the same as in the session field[/li]
[/ol]
While you are using LDAP, I have no idea how to adapt the above for your needs.

Feherke.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

jimktrains
  • Locked
  • Question Question
RHEL 7 limit user logins
Replies
0
Views
308
jimktrains
jimktrains
w5000
  • Locked
  • Question Question
mounting a filesystem multiple times - what sense?
Replies
7
Views
1K
ChrisHirst
ChrisHirst
srikanthgali87
  • Locked
  • Question Question
Shell script to sync user accounts multiple servers
Replies
1
Views
395
ady2012
ady2012
inforeqd
  • Locked
  • Question Question
Multiple Physical NICs on Redhat KVM Virtual Machine
Replies
0
Views
215
inforeqd
inforeqd
ddrillich
  • Locked
  • Question Question
Removing lines based on multiple words
Replies
5
Views
362
ddrillich
ddrillich

Part and Inventory Search

Sponsor

Back
Top