PP513: non verified users can login(NOT A BUG)

[snoopy5]

Hi

PP513. Internal registration. When a user is registering I set in admin: "Require verification of email address upon registration?" to yes.

Now I found out, that even if a user is not confirming this verification mail, he can login into the gallery.

His status is then "unregistered" and he does not see the "upload photo" button, but IMO he should not be able to login at all, if he did not confirm that mail.

This is how it works with any other software program I know and the current "way" in PP513 leads to total confusion for those users.

How can I fix this?

Thanks in advance

[Chuck S]

Hello this is not a bug

It is coded to work this way and permissions for this unverified usergroup are as you set. He will not be allowed to do anything. Vbulletin works this very same way. You can login but you only have permissions to do as the admin sets

[snoopy5]

Quote:

Originally Posted by omegatron

Hello this is not a bug

It is coded to work this way and permissions for this unverified usergroup are as you set. He will not be allowed to do anything. Vbulletin works this very same way. You can login but you only have permissions to do as the admin sets

But from a logic point of view, I do not understand it. If I make the settings in admin menu, that new users have first to click on the verification mail before their account is valid, it would be more logic not to let people log-in, without that approval. This is why I use this option in admin menu

IMO with the currenbt way of handling this, users will think that the problem lies somewhere else. So this leads to confusion for my users. They see they can login in, so they will think that they activated everything o.k, or no activation is needed.

Very often, approval mails get blocked by spam blockers. If users nevertheless can login, they will not realize that the confirmation mail is missing. Worst case, they try to get things done while beeing logged in, but leave afterwards frustrated and never come back again.

I would like to avoid to get my users upset or confused

So I would strongly suggest to change this in a next version so it is for users very straight forward: either they user the confirmation link and they get in, or they don't and have no login possibility at all.

[FL]

I have to give seffern2 right in this issue.
Also my users are getting confused.. why cant i upload, i am logged in and so on.
a "standard" like solotion would be inhandy here.

[Chuck S]

Vbulletin allows a person to login if not confirmed. You just cant do anything as usually a person does not have posting permissions etc. The same is true for Photopost.

I do not think I know of any product that works as you describe. I am thinking all the top products here. Vbulletin UbbThreads Invisionboard etc.

If the username and password they use is correct and exists they will be logged in and then assigned the proper permissions based on the usergroup they are in.

[snoopy5]

Quote:

Originally Posted by omegatron

If the username and password they use is correct and exists they will be logged in and then assigned the proper permissions based on the usergroup they are in.

This is exactly what leads to the confusion. A non-confirmed mail address is a not valid account. Fullstop. There does not exist in real life a 50% valid account. Either it is valid or not. This is a YES or NO option but never a MAYBE option.

If the webmaster decides to allow only new user registrations with verification e-mails, the intention is pretty clear. NO ACCESS TO ANYTHING until they confirmed their mail address, since this user is officially not yet validated.

A not yet valid account, must not be able to login or belong to a usergroup. It does not matter whether vbulletin or others make the same mistake.

As a side note:

I would strongly suggest, not to rely only on the way vbuletin works when making new features. I know vbulletin users is the big part of your costumers. But you will never reach a siginificant part of other users, if you only focus on vbulletin like usability or features for vbulletin users.

There are more potential costumers out there who do not use vbulletin than those who use it. You are missing to address them by depending too much on how vbulletin works.

So please change this login problem in the next upgrade.

[Chuck S]

Well I would suggest you view just about every peice of software on market whether it be Vbulletin UBBThreads Invisionboard Photopost Coppermine Mambo 4Images etc. They all work this way.

THIS IS NOT A BUG. It is exactly how the software is suppose to function. If you want this to be a suggestion please post in the suggestions forum. Remember here I am just answering a thread in the bugs forum of Photopost