vBulletin Mods

The Official vBulletin Modifications Site
https://www.vbulletin.org/forum/showthread.php?t=308715

Temporary Passwords by BOP5 (Allow admins to login as any user without user password)
by BirdOPrey5
21 Feb 2014 13:42

2 Attachment(s)
Brought to you by BirdOPrey5 / Qapla.com

The purpose of this mod is to allow a site Super Administrator to login as any other user on the forum for troubleshooting purposes.

I know there are other mods that allow Admins to login as other users but they aren't truly logged in as the other user. It's more like they are getting a copy of the user's permissions ans settings. This is good for many things but it is not 100% exact and therefore can cause its own problems when trying to troubleshoot issues.

This mod is different. On the user's setting page in the Admin CP is a new box "Temporary Password" where an admin can enter a temporary one-time use password. When they save the user settings the user's old password is copied (while remaining encrypted) to another location and the temporary password they created becomes the user's new password.

As soon as possible they should then log in as the user with the password they set.

As soon as the Admin (or anyone) has logged in successfully with the temporary password the user's old password is restored and the temporary password is deleted.

In the mean time the Admin will continue to be able to use the forum as the user so long as they don't log out. If they do inadvertently log out they can set another temp password and log back in.

Due to the nature of the mod you should aways use the temp password as soon as possible- if you wait and the user tries to login when the temporary password is set they won't be able to.

I suggest using a 2nd web browser when using this. For example in Chrome you are logged in as yourself (Admin Account) but you use Firefox to log into the user's account. This allows you to quickly switch between accounts to troubleshoot.

If you change your mind and don't need the temp password after all simply return to the user's settings page in Admin CP and delete the temporary password and save changes. The user's original password will be restored.

If you uninstall the mod any temporary passwords you had set will be automatically undone and the user's original passwords restored.

There are no settings for this mod. Install it and it is active.

Only Super-Administrators specified in the config.php file can set or see temporary passwords, other admins will not be able to set or see temp passwords, the box just won't be there.

Compatible with VB 3.8.x & VB 4.x.x.

------------------------------------------------------

Please "Mark as Installed" if you use this. :)
Donations always appreciated. :up:
Nominate MOTM if you LOVE it! ;)

BirdOPrey5 21 Feb 2014 13:43

Reserved.

Manoel Júnior 21 Feb 2014 13:49

Wow, thanks! Tagged

Barcham 21 Feb 2014 16:08

Installed and tested on 4.2.2 and it works perfectly. I can see this being very useful for troubleshooting member problems when they come up.

Alan_SP 22 Feb 2014 12:54

Excellent idea. :up:

Nominated & Suggestion for another mod
by ahobilam
22 Feb 2014 13:13

Really it is a super mod for Admins of vb!
Given full rating and nominated.
One more request,
As we are using a mod "Useful Postings"
can you create a mod with a button "Attention Admin" button in all postings
by clicking that button by a user who wants urgent help from Admin,
A fast (priority) email should be sent to admin email.
Or if the admin is online a notification popup window can be displayed for Admin only.
This will be most helpful for all admins.
Please consider.
Expecting your favorable reply at the earliest.
Thanks in Advance.

Snowhog 22 Feb 2014 23:15

Installed.

Thank you for the hard work you do to bring us such excellent MODS.

BGObsession 23 Feb 2014 14:09

I like the approach here - only thing keeping me from installing is that I know with previous 'Log In as User' mods, it's very easy to forget you are logged in and accidentally post under that user's name. The mods I've used previously would put some kind of a banner warning on all pages when logged in as that user as a reminder. Just a thought, otherwise I like it :)

BirdOPrey5 23 Feb 2014 14:59

Understand the concern but that banner is one of the main reasons I made this mod- it needs to be an exact login as a user to troubleshoot- anything different would defeat the purpose.

You do need to be careful but if you're only using it for serious trouble-shooting it shouldn't be a problem- I open the user's account in a completely separate browser and close it as soon as I'm done.

Barcham 23 Feb 2014 15:13

There is another situation that this can be used in that no one has mentioned yet. It is extremely useful for generating a one time only password for members who have lost their password and have requested a reset. You can generate a new password for the user and forward it with instructions that they can only use it once and must change their password at login.

ozzy47 23 Feb 2014 15:23

Well for that they should be using the Forgot Password link, that is the most secure way.

BirdOPrey5 23 Feb 2014 15:31

Quote:

Originally Posted by Barcham (Post 2483226)
There is another situation that this can be used in that no one has mentioned yet. It is extremely useful for generating a one time only password for members who have lost their password and have requested a reset. You can generate a new password for the user and forward it with instructions that they can only use it once and must change their password at login.

That would not work. Once the user has logged in the password would immediately change back to the old "forgotten" password- and the user needs to enter the current password to change the password- the user wouldn't know the current password because by the time they can enter it, it is already the old (non-temporary) value.

In the Admin CP drop down box on the user's page is an "Email Password Reminder" to user that lets the user reset their password, that should be used in the situation you describe.

Barcham 23 Feb 2014 15:45

Very true! Shows that I'm more accustomed to being the moderator of a board than just a member! LOL

ozzy47 23 Feb 2014 16:39

Quote:

Originally Posted by BGObsession (Post 2483215)
I like the approach here - only thing keeping me from installing is that I know with previous 'Log In as User' mods, it's very easy to forget you are logged in and accidentally post under that user's name. The mods I've used previously would put some kind of a banner warning on all pages when logged in as that user as a reminder. Just a thought, otherwise I like it :)

Do you have a static IP or a dynamic IP?

DemOnstar 23 Feb 2014 16:48

I have this one http://www.vbulletin.org/forum/showthread.php?t=233350 on the testing site but I am now looking at temp passwords as a replacement..
Not that the other has failed in any way but BOP5 is always waiting in support and he does make exceedingly good cakes...


All times are GMT. The time now is 08:07.

Powered by vBulletin® Version 3.8.12
Copyright © 2019, MH Sub I, LLC dba vBulletin. All Rights Reserved. vBulletin® is a registered trademark of MH Sub I, LLC
Copyright ©2001 - , vbulletin.org. All rights reserved.