You are here

Home » API reference » LoginToboggan 7

README.txt in LoginToboggan 7

Same filename in this branch
  1. 7 README.txt
  2. 7 contrib/logintoboggan_rules/README.txt
  3. 7 contrib/logintoboggan_content_access_integration/README.txt
Same filename and directory in other branches
  1. 8 README.txt
  2. 5 README.txt
  3. 6 README.txt
*******************************************************
    README.txt for logintoboggan.module for Drupal
*******************************************************

Co-developed by Jeff Robbins (jjeff) and Chad Phillips (hunmonk) with several
features added by Raven Brooks (rbrooks00).

The Login Toboggan module improves the Drupal login system in an external
module by offering the following features:

   1. Allow users to login using either their username OR their email address.
   2. Allow users to login immediately.
   3. Provide a login form on Access Denied pages for non-logged-in
      (anonymous) users.
   4. The module provides two login block options: One uses JavaScript to
      display the form within the block immediately upon clicking "log in".
      The other brings the user to a separate page, but returns the user to
      their original page upon login.
   5. Customize the registration form with two e-mail fields to ensure
      accuracy.
   6. Optionally redirect the user to a specific page when using the
      'immediate login' feature.
   7. Optionally redirect the user to a specific page upon validation of their
      e-mail address.
   8. Optionally display a user message indicating a successful login.
   9. Optionally combine both the login and registration form on one page.
  10. Optionally display a 'Request new password' link on the user login form.
  11. Optionally have unvalidated users purged from the system at a pre-defined
      interval
      (please read the CAVEATS section of INSTALL.txt for important information
       on configuring this feature!).
  12. Provide a user:password token that can be used to send a plain text password
      as part of registration process.
  13. Blocks email contact to non-authenticated users. Until a user validates, only emails
      relating to the registration process can be sent to that user.    
 
Users who choose their own password can be automatically assigned to a selected
'non-authenticated' role. This role could have more permissions than anonymous
but less than authenticated - thus preventing spoof accounts and spammers. The
user will only be removed from the non-authenticated role and granted
authenticated permissions when they verify their account via a special email
link, or when an administrator removes them from the non-authenticated role.
It is important to check that this non-authenticated role does not cause
problems when used with other contrib modules such as OG that assume all site
users hold the authenticated user role.

Site administrators should be cautious about using feature 12: plain text passwords. Drupal
core removed this, and there are risks in sending data in unencrypted email. Also, this token will
only work on registration.

File

README.txt
View source 
  1. 

  2. *******************************************************

  3.     README.txt for logintoboggan.module for Drupal

  4. *******************************************************

  5. 

  6. Co-developed by Jeff Robbins (jjeff) and Chad Phillips (hunmonk) with several

  7. features added by Raven Brooks (rbrooks00).

  8. 

  9. The Login Toboggan module improves the Drupal login system in an external

  10. module by offering the following features:

  11. 

  12.    1. Allow users to login using either their username OR their email address.

  13.    2. Allow users to login immediately.

  14.    3. Provide a login form on Access Denied pages for non-logged-in

  15.       (anonymous) users.

  16.    4. The module provides two login block options: One uses JavaScript to

  17.       display the form within the block immediately upon clicking "log in".

  18.       The other brings the user to a separate page, but returns the user to

  19.       their original page upon login.

  20.    5. Customize the registration form with two e-mail fields to ensure

  21.       accuracy.

  22.    6. Optionally redirect the user to a specific page when using the

  23.       'immediate login' feature.

  24.    7. Optionally redirect the user to a specific page upon validation of their

  25.       e-mail address.

  26.    8. Optionally display a user message indicating a successful login.

  27.    9. Optionally combine both the login and registration form on one page.

  28.   10. Optionally display a 'Request new password' link on the user login form.

  29.   11. Optionally have unvalidated users purged from the system at a pre-defined

  30.       interval

  31.       (please read the CAVEATS section of INSTALL.txt for important information

  32.        on configuring this feature!).

  33.   12. Provide a user:password token that can be used to send a plain text password

  34.       as part of registration process.

  35.   13. Blocks email contact to non-authenticated users. Until a user validates, only emails

  36.       relating to the registration process can be sent to that user.    

  37.  

  38. Users who choose their own password can be automatically assigned to a selected

  39. 'non-authenticated' role. This role could have more permissions than anonymous

  40. but less than authenticated - thus preventing spoof accounts and spammers. The

  41. user will only be removed from the non-authenticated role and granted

  42. authenticated permissions when they verify their account via a special email

  43. link, or when an administrator removes them from the non-authenticated role.

  44. It is important to check that this non-authenticated role does not cause

  45. problems when used with other contrib modules such as OG that assume all site

  46. users hold the authenticated user role.

  47. 

  48. Site administrators should be cautious about using feature 12: plain text passwords. Drupal

  49. core removed this, and there are risks in sending data in unencrypted email. Also, this token will

  50. only work on registration.