Is it possible to avoid the login for one username in deifferent computers?

I saw several users displayed in the control panel with the same username. I would like to know if they are sharing the username-password or if Joomla has this problem to accept that.

Multiple simultaneous sessions with the same username, I would like to cancel.

Do you have any idea how to dissable this to be happen using cb 1.2.2 and cbsubs 1.0.3. ?

Thank you for your help.

hv

Post edited by: krileon, at: 2010/12/07 21:10

Krileon,

Preventing multiple simultaneous logins with the same username is something that I'm keenly interested as well. I would assume that any CB Subs user is going to want to prevent paid subscribers from giving out their usernames and passwords for others to use for free -- without any inconvenience or negative consequences whatsover.

This strikes me as a huge loophole in the "pay-for-content" strategy that CB Subs is intended to enable.

Human nature being what it is, people are going to cheat. I understand that, but why make it easy for them to do so?

I would hope that the CB developer community will recognize this as a serious shortcoming and work on developing a plug in to resolve the issue.

In the meantime, if anyone has any thoughts about how to deal with the problem in an effective manner, I'm eager to hear them.

Krileon,

Your response seems to be "I can't think of an effective solution, therefore there is no problem."

But, in fact, there is a problem, and here it is:

1. CBSubs is intended to restrict content to paid subscribers.

2. People other than paid subscribers can easily access the "protected" content via complicity of a paid subscriber who provides the freeloader with his username and password.

3. The complicit paid subscriber and the freeloader can then log in at the same time with neither suffering any adverse performance consequences.

4. Ergo, there is a loophole in the system. CBSubs attempts to restrict access to content but does not address the most basic means of bypassing those restrictions: multiple simultaneous logins with a legitimate paid subscription.

Perhaps one additional factor I should mention is that in my particular application, the subscribers have opportunities for actual face-to-face relationships rather than just online relationships. Obviously, this greatly enhances the likelihood of collusion (a/k/a petty larceny).

What are my options? Stare at the "Who's Online" panel of the Admin, watch for multiple logins and then deal individually with offending users?

You're a smart guy. I bet you can figure something out if you put your mind to it. But, as usual, the first step is admitting that there is a problem.

And, certainly, from my point of view as a guy who counts on paid subscriptions, there is.

I would also say that as far as your idea of a plug in to delete duplicate sessions, I would vote for that. I wouldn't be too worried about inconveniencing a legitimate user since, in a case where a legitimate user has given another person his username and password in an attempt to defraud the site owner, there is very little legitimacy to be protected. Perhaps a bit of inconvenience might send the proper message.