[isf-wifidog] Another authentication method?

Michael Way michael.j.way at gmail.com
Ven 11 Avr 16:48:13 EDT 2008 

Thanks for your tips/comments regarding my issue.

I guess I've given up on the idea of having a simpler token
since I don't have the time (unfortunately) to do the code modifications,
although Benoit makes it sound quite easy! :-)

Still, it would be useful to have potential users have their email
authentication link sent to their sponsors email address (which is on the
inside of our firewall). Unfortunately I discovered that you cannot use the
same email to sign up more than once. Is there a simple way to change this?
I would guess it's one or two lines of code somewhere?

Another more trivial question: Is there a way to set up account
expiration dates,
or a way to expunge an account (you're going to tell me to do it in
postgres I guess)?
I couldn't find a link in the admin web pages that said "delete account", or
"set account expiration". Maybe I'll need to repost this last question...

Otherwise my set up using a WRT-54GL with openwrt using wpa2 and the wifidog
gateway server is working quite excellently with the wifidog
authentication server on my
fedora core 8 i386 linux box.

cheers!
mike


On Mon, Apr 7, 2008 at 9:13 AM, Benoit Grégoire <benoitg at coeus.ca> wrote:
> On 4 April 2008, Robin Jones wrote:
>  > You are right, the URL is quite long, this is because of the way that
>  > wifidog works. The validation includes such data as the clients mac
>  > address etc.
>  >
>  > Is it not possible for the sponsor to click the link to validate the
>  > client? This should work, even when off site.
>  >
>  > Through code, this could be achieved by creating a new table in the
>  > wifidog database and modifying how the validation works so the link is
>  > sent to a table and a random alphanumeric code is generated. This would
>  > then be sent to a special mailbox that the administrator checks. An
>  > input box and button could then be generated in the login template which
>  > would redirect the user to the right URL.
>
>  Actually, the current validate script could be changed easily to achieve much
>  of
>  this.  User id, mac, etc are only passed so the system can login the user,
>  and possibly open an internet session in a single request.  The only real
>  piece of information is the actual token.  You could change the generation
>  algorithm to generate something shorter.
>
>  You would however have to change the login screen so that if someone tries to
>  login with an unvalidated account, the form modifies itself to allow him to
>  enter the token.
>
>  --
>  Benoit Grégoire
>  Technologies Coeus inc.
>
>
> _______________________________________________
>  WiFiDog mailing list
>  WiFiDog at listes.ilesansfil.org
>  http://listes.ilesansfil.org/cgi-bin/mailman/listinfo/wifidog
>

Plus d'informations sur la liste de diffusion WiFiDog