Hi ,
I have got Nuke 6.0 . Sec Fix installed.PhpBB port installed.

When a user registers,System sends a mail with User activation link to Admin and a similar mail to the User.But before Admin Activates the USER,the User can login to the system.

Any fixes?

Or have i configured something wrong?

8O

Are you using the Forum registration hack for phpBB port?

mikem

the user activiation system is just built into the forums piece so yes they will be able to log into nuke prior to activating via the email link, but I think if you have any hidden/private forums that are set to registered users only they will not be able to see those boards prior to activating.

Oh and also, if they happen to use the Nuke registration to register, then yes, they willbe able to loggin, siince Nuke's registraiton writes the user_activate status as active. Unlike the Forum does if you have User Activation enabled. It writes the value as inactive until the link is followed. Or at least it should.

mikem

Hi guys ,
It has been sorted out.The index.php inside "Your_Account" had some problems.I reuploaded and it seems to work fine.


NB:-I couldnt reply yesterday as whenever i tried to post reply i got "Invalid_Session"

ok this invalid session thing has gotten me perplexed.
I think we seemed to have solved it by setting the Session Lenth value in the Forum Admin/Configuration screen to 20000. This never had an effect on Nuke6.0 with phpBBport..wonder what the deal is now?

mikem

At phpbb.com in thier forums there is quite a bit of info on Invalid Session errors. Basically they suggest setting it at 3600 seconds which is 60 minutes, anything longer could lead to a breach in security by someone stealing a session ID.