Skip to main content

This site requires you to update your browser. Your browsing experience maybe affected by not having the most up to date version.

Customising the CMS

Extend Authentication Rules


Reply

4 Posts   1326 Views

Avatar
aandrade

24 September 2009 at 11:28am Community Member, 2 Posts

Hi all, I need to extend the authentication rules used by default in the CMS, so not just a user/password and status checking. I need to add some rules based on some other cirteria on things like account expiration date, etc...

Any ideas on what files need to be modified or created will help a lot.

Thanks

Avatar
banal

24 September 2009 at 5:41pm Community Member, 901 Posts

Hi

Should be possible, although I never did this.
Have a look at the sapphire/security folder. There you'll find the MemberLoginForm and MemberAuthenticator which are the classes used to login a member.
The Security class is the Controller that's being called when you visit yoursite.com/Security/login. It gets the registered authenticators and displays their login form(s).

You can create your own LoginForm/Authenticator (or inherit from MemberLoginForm/MemberAuthenticator) and register it as default authenticator (see Authenticator::set_default_authenticator).
This should be doable without altering core files, so you can place all your code in the mysite/code directory (maybe in a subfolder named "security").

Avatar
aandrade

25 September 2009 at 1:39pm Community Member, 2 Posts

Thanks banal, makes sense I'll give it a crack.
cheers

Avatar
Dave L

1 October 2009 at 2:55am Community Member, 56 Posts

I've just done this and [url=http://tamethebackbutton.blogspot.com/2009/09/customize-your-own-silverstripe-login.html]documented it on my blog[/url].