Changeset 4160 for extensions/NBC_UserAdvManager/branches/2.12/main.inc.php
- Timestamp:
- Oct 31, 2009, 5:55:24 PM (14 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
extensions/NBC_UserAdvManager/branches/2.12/main.inc.php
r4154 r4160 76 76 77 77 -- 2.12.1 : Rollback on admin panel improvement (it was a bad idea) 78 79 -- 2.12.2 : Bug 1221 fixed - Adding of a new funtion to populate the lastvisit table on Ghost Tracker activation 80 Bug 1224 fixed - Error in database after plugin activation 81 Bug 1225 fixed - "Reminder" status don't change from "false" to "true" after the sent of a reminder email 82 Some code beautify (SQL requests and HTML 4 strict for tpl) 78 83 */ 79 84 … … 81 86 82 87 ***** TODO List ***** 83 84 ++ !! Function to populate the #_user_lastvisit_check table from existing users85 86 88 ++ No validation needed for admins users comments (new trigger needed in comments.php ?) 87 89 … … 92 94 93 95 ++ Security : Blocking brut-force attacks ! 96 -> Way to do that : Count the number of failed attempts to connect and lock the targetted account after x attempts. Where x will be settable by admin. 97 To unlock the locked account : 98 -> A new table in admin's plugin panel which would display the locked accounts. 99 -> Sending an email to account owner to inform him his account is blocked due to multiple failed connexions attempts. This email could have a link with a security key to unlock the account. 100 -> Both of above solutions ? 94 101 95 102 ++ Opportunity to copy a registered user for new user creation … … 149 156 $query = ' 150 157 SELECT * 151 FROM '.USER_LASTVISIT_TABLE.'158 FROM '.USER_LASTVISIT_TABLE.' 152 159 WHERE user_id = '.$userid.' 153 160 ;'; … … 202 209 function UserAdvManager_Deluser($user_id) 203 210 { 211 /* Cleanup for ConfirmMail table */ 204 212 DeleteConfirmMail($user_id); 213 /* Cleanup for LastVisit table */ 214 DeleteLastVisit($user_id); 205 215 } 206 216
Note: See TracChangeset
for help on using the changeset viewer.
