Multiple website accouts to secure settings.

Posted by: Anonymous

Multiple website accouts to secure settings. - 07/03/06 05:05 AM


Is it possible to create a view-only account for the PingPlotter Pro website? So, in stead of one, two accounts to login in the website. One for the administrator, the other for helpdesk, site monitor or ......

The only thing the view-only account must/can do is:
- change the Targets/view (chose only from existing targets). Or just one summary view.
- change "Graph Time” view.


Posted by: Pete Ness

Re: Multiple website accouts to secure settings. - 07/03/06 02:56 PM

Hi, Paul.

We don't support multiple logins at all.

You have a couple of possibilities here.

1) Make a copy of the default script and have a different URL for read/write and read/only.

First, make a copy of the default.asp script in the PingPlotter Pro www directory and use that for your editable interface. For this example, we'll call it "default_admin.asp" Now, edit your default.asp file to set it to read-only view (you'll see a constant near the beginning for "EDITING_ALLOWED" - set that to false).

Now, your standard view people will get read-only views. We still need to add your read-write page / view, though. The web interface in PingPlotter Pro must have all its pages explicitly defined, so let's go add that.

Go to Edit->Options, Web Server
In the "Served File List", hit "Add".
For HTTP name, enter "/default_admin.asp" (no quotes, but the slash is required).
For local file, enter "default_admin.asp+" (no quotes, the + is required to tell PingPlotter Pro to parse this script).

OK, so now if you access http://(your web server:port)/default_admin.asp, you'll get a read-write web interface.

For more security, you can change "HTTP name" to be more obscure. If you change the "HTTP name" to "admin_editable_tri34a23", then you'll be able to access this page with the URL: http://(your web server:port)/admin_editable_tri34a23 - you can change it occasionally if you think someone's doing something they shouldn't. Note that it doesn't need to have an .asp extension - you can use anything you like.

2) Use IIS and edit the default.asp to check for a user name. You'll need to do something like this:

if Request.Servervariables("LOGON_USER") = "adminusername" then
end if

Of course, you'll need to set up IIS security at that point, which is beyond the scope of this discussion.

Please let us know if either of these solves your problem!

- Pete
Posted by: Anonymous

Re: Multiple website accouts to secure settings. - 07/05/06 05:10 AM

Hello Pete,

First, thanks for your time and the fast response!! Yesterday I wasn't working, so I could not try this before this morning.

There isn't an "Editing_Allowed =" constant in de file 'Default.Asp'. I insert the line
"Editing_Allowed = false" after the line "Response.Buffer = True" and I stopped/started PingPlotter Pro 3.002p. But via http:/' you can still change everything, when you change ‘#of times to Trace’ to say “10” the trace STOPS after 10 pings.

I haven’t an ISS server to test the second option.

I understand that there isn’t an easy solution and because it isn’t a very hot item (I tell the helpdesk not to change anything and I will check the settings daily), I thank you for your time.

Perhaps this is an option in future versions……..


Paul <img src="/forums/images/graemlins/smile.gif" alt="" />
Posted by: Pete Ness

Re: Multiple website accouts to secure settings. - 07/05/06 10:10 AM

Ooops. I forgot that this option is only in the beta release ( We're working on wrapping up the beta changes and putting them into an official release over the next few weeks.

- Pete