Hey all,
wondering if anyone knows what variables know the "User" information of a particular user login'd through the Editor function in browser.cgi (ie. Username, Status, Email etc...) as well as the sessionid and other CFG->information? Those with "Administrator" or editor status seem NOT to carry any of this info with them (ie. <%Status%> <%build_root_url%>, <%build_cgi_url%> etc.... and everything else;) as IS available through the add.cgi, modify.cgi scripts. For example, how would an editor or Adminsistrator return to the dynamic site without having to re-login in?
Is this information available or do I need to somehow code it into the scripts? Tried looking for this in the forum, but doesn't seem discussed. Seems like we SHOULD be able to access the User information such as Status, SessionID, Email, etc... of any and everybody when they login and make changes. Simply allowing them to make changes because they are an Editor without knowing who they are at some level opens the system up to abuse - or am I not understanding this properly (if so, please point me to the explanation). I'll keep looking, as I'm trying to setup different levels of "Editorship"
Here's hoping someone can clue me in to the information I'm missing.
Peace.
wondering if anyone knows what variables know the "User" information of a particular user login'd through the Editor function in browser.cgi (ie. Username, Status, Email etc...) as well as the sessionid and other CFG->information? Those with "Administrator" or editor status seem NOT to carry any of this info with them (ie. <%Status%> <%build_root_url%>, <%build_cgi_url%> etc.... and everything else;) as IS available through the add.cgi, modify.cgi scripts. For example, how would an editor or Adminsistrator return to the dynamic site without having to re-login in?
Is this information available or do I need to somehow code it into the scripts? Tried looking for this in the forum, but doesn't seem discussed. Seems like we SHOULD be able to access the User information such as Status, SessionID, Email, etc... of any and everybody when they login and make changes. Simply allowing them to make changes because they are an Editor without knowing who they are at some level opens the system up to abuse - or am I not understanding this properly (if so, please point me to the explanation). I'll keep looking, as I'm trying to setup different levels of "Editorship"
Here's hoping someone can clue me in to the information I'm missing.
Peace.