Hi,

I want to add a member state (active, inactive, banned) which gets checked on login. The value is only set by the admin in the cms and is never visible to public. I have got this bit happening no worries.

So if the member tries to login it checks the account to see which state it is in and acts appropriately.

Where should i start to look for this?

thanks.

I would implement a DataObjectDecorator.
Then add it as a role to Member
http://doc.silverstripe.com/doku.php?id=dataobjectdecorator&s=decorator
then implement
updateCMSFields
so that this 'member state' is only shown if a 'administor' is logged in...

g
Helmut

i'm not sure why there's a need for a special authenticator?
DataObjectDecorator can define default for field-values
fe: 'active' for your 'member state'.
then someone could fe. 'special implement'
SiteTree::canEdit() for pages,
if these Memers are canCMS Members.
Additionally you could generate getCMSFields on your classes, depending on member state...

And only for restrictions about frontend users (members)
i could do things specially while frontend rendering, depending on your member state.
what is the missing part, so where's the need for an authenticator?

g
helmut

ok,
i thought about
'why not let him log in, if then, there's nothing he can do?'

which means i'ld throw
Security::permissionFailure(null);
in any controller, if he's not 'active'.

so it wouldn't matter that he is logged in...
i could additionally show him 'you're blocked' in his member profile...

g
helmut