Question2Answer Q&A - Recent questions tagged external-users

I need a sample code for integration of 3rd party user login

Tue, 14 Dec 2021 16:33:01 +0000

I am having a Laravel based app. Which is having user login authentication system already. How can I integrate its login in q2a application. I need sample codes and workflow.

Microsoft 365 authentication

Tue, 09 Nov 2021 04:59:51 +0000

I want to set up authentication through Microsoft 365.

How can i do this?

What happen to the internal users if I setup LDAP authentication?

Fri, 26 Feb 2021 04:43:33 +0000

We have an active Q2A site with internal user authentication enabled. There are at least 30 users. I would like to setup LDAP authentication using qa-ldap-login. Will the existing users be able to login using the internal accounts once I setup LDAP? Will those users be removed/overwritten from the database? What happens to the score of the users ?

SSO config session cookie hashed?

Wed, 18 Apr 2018 14:26:02 +0000

Hello,

I am trying to get the SSO working with TikiWiki following the instructions in the qa-external-users file. Overall TikiWiki seems to be reasonably similar to Wordpress etc. that it should work, but I am quite inexperienced with these things.

I am going of the second example for function qa_get_logged_in_user() as userids are stored as numeric values and TikiWiki seems to create a session cookie.

However I have run into several issues:

1. The cookie that seems to be created by TikiWiki (called PHPSESSID) only contains a single value that looks like a some sort of hashed random string. Normally there should be the userid, right?

1.1. If I set the if "(isset($_COOKIE['sessionid'])) {" to 'PHPSESSID' the Q2A page fails to load due to an database error. I guess this is just because it can't understand the above hashed value and tries to find a userid with it?

2. Tikiwiki by default has a session storage location defined in the php.ini, but being on a shared host I don't have direct access to the php.ini. There is also a option to store it in the database as the Q2A example seems to assume, but somehow this seems to be broken in TikiWiki as when I select that I can't log in anymore. Is there another way of doing this?

I hope someone here has an idea about this, as I seem to be well over my head on this :( Thanks for the help in advance!

Using the qa_users table of the main forum in a second forum

Sun, 30 Jul 2017 02:31:18 +0000

Next to my main site I plan to create another forum with another purpose (thus on another domain!).

I want the users from my main site to log-in into the new forum site - with their existing logins.

I found https://github.com/q2a/question2answer/blob/dev/qa-external-example/qa-external-users.php which seems quite complicated at first glance.

Questions:

1. Is there any easy way to just tell q2a to use the other database's qa_users table instead?

2. Has somebody done something like this already? If so, what would be the code of qa-external-users.php?

3. What else to consider?

Thanks for sharing your experiences and ideas.

Kai

How to enable Wall Posts for External Users?

Tue, 04 Jul 2017 03:05:11 +0000

I'm using Q2A 1.7
Is there a way to make the wall work with external user integration?
Where do I start?

How to enable private messaging when using external user authentication

Thu, 22 Jun 2017 00:08:01 +0000

Can we please have private messaging enabled when using external-user authentication?

Linking logins for user

Fri, 28 Apr 2017 13:45:10 +0000

We have an internal site running with users registering and using passwords, but we want to switch to using LDAP against our corporate directory.

We've tested the ldap plugin, but it treats an ldap login as a new user, and it would be better if our users could keep their existing accounts and history, while switching from password login to LDAP login.

I've made a small patch to user.php which treats a new ldap login as belonging to an existing user if the ldap email matches the existing user email, but is this a sensible way? If I made a PR against 1.8 to support this behaviour as a non-default config option, would it be considered?

This user appears to have wanted the same thing: http://www.question2answer.org/qa/51868/active-external-user-when-question2answer-already-installed

The changes are in https://github.com/andrewmcguinness/question2answer/tree/acctlink18

There are three issues with it:

It's not tested against 1.8 -- We're actually running 1.7.4 and it appears to work as intended there
It doesn't distinguish different external user sources; it's good for LDAP, but anyone who logs in with a plugin that works the same way as the LDAP plugin, but who can control the email address on the source can effectively hijack anybody's account by setting their email address to match the victim in the external service and then logging in using that service and linking their login to the existing account.
Both login methods will work for the merged account, which is OK, but there's no way to get rid of the password if you decide you don't want it any more. I imagine we will wipe them as a one-off at some point in the future once our users are used to using LDAP.

Emergency Help reqired on 'Login as other user'. Ready to Pay

Wed, 30 Nov 2016 23:57:15 +0000

I am facing issue with my site. Please help me.

Its an emergency :'(

http://www.question2answer.org/qa/54400/strange-problem-login-as-another-user

----------------------------------------------------------------------------------------------------------------------

Update 1: I have migrated back to 1.74 (with all user credentials reset)

Its pure core q2a. No other authentication user plugin used. STILL problem exists.

Last registered user account will be logged in to someone else...!!!

----------------------------------------------------------------------------------------------------------------------

Update 2 : Finally, Issue got resolved.

Special Thanks to @pupi1985 who digged into root of the issue :)

The issue was with Shared hosting. Server was serving cached data!

Response header containing flag X-Served-From-Cache : Yes

Solution: Move out of Shared hosting to VPS!

PS: For 1.8 release, can we add this check during installation process to stop user installing on such servers?

-----------------------------------------------------------------------------------------------------------------------

Accessing Question2Answer from external PHP code

Mon, 12 Sep 2016 06:27:25 +0000

Is this --- http://docs.question2answer.org/code/external/ --- the way to display content and data from Q2A (I have it on a subdomain) on another domain? So say I wanted to grab some user data and display it on a wordpress user profile? Is this the right place to look or would that be the external users page.

Whats the purpose of the external users php file?

Sat, 03 Sep 2016 16:50:37 +0000

Im new to wordpress integration, running into some issues. Testing it, when I logout it sometimes doesnt logout or it shows me as another user. So I guess cookies arent clearing? Checking out the external users file, it appears it needs to be modified alot? Is this nexessary for integration to function properly, or what needs modifying in that file? Thanks!

Do we have to edit all of external-users php to get synced with wordpress integration

Sun, 28 Aug 2016 12:01:31 +0000

I have integrated with wordpress, but not sure what the external users php file is for? Is this handled automatically or do we have to edit and change things? Is this the only way for the cookies, login, logout, combine user profile to function? Sorry, new to this integration and SSO stuff. There's been some 'bugs' or my user error of not being able to sign out completely, etc.

Question2Answer Accounts to use with other CMS

Sat, 18 Jun 2016 23:14:12 +0000

I am not tested external user yet, but I don't really understand how external user will work with other DB user especially is password and how can be Question2Answer accounts can be migrate to other CMS?

In this case, for example I installed a wordpress blog and trying to copy user from question2answer DB user to Wordpress DB user but they are using different password hasing and different password encryption algorithm so it's can't be work.

Could someone help me with an example of an external login?

Fri, 17 Jun 2016 15:10:24 +0000

Greetings,

I've searched the forums and looked through the /pages/login.php file. I've also read the module logins page in the wiki. I'm still grasping at how to actually pass user login / registration info to q2a from my external page. I'm really not great with php. Would anyone be kind enough to help me with a basic example of how I can take the email/pw and pass it into q2a and how I can do the same with registration fields? I would be forever grateful.

I'm not using openID or facebook or any of the other login plugins. Just a simple email/password.

Thanks,

J

Active External user when Question2Answer already installed?

Mon, 23 May 2016 04:06:59 +0000

I am going to intergrate user database with Q2A, what I want here is:
- Moving user from Q2A to my User DB, so my User DB will have Q2A accounts.
- Q2A will active External user and use data from my User DB from now on, no question, comment, points is loss.

Can I do this? Because the documentation show the instruction when you newly install Q2A while I am going to active External user on a already-working Q2A site.

Sorry for my bad english.

How could I change mail receiver for notifications ?

Sun, 08 May 2016 05:01:24 +0000

Hello !

I'm integrating Q2A with single sign-on. To perform that, I use an iFrame that displays the Q2A component and a GET method to have the user logged in (with mail, user ID,etc...)

This works well, but I have noticed a problem : when for example User A asks a question, and user B answers it, user B receives the mail notification for "new answer to your question" !

So I'm asking you where in the code is the script that prepares the mail, and how could I fix it... Or it is a problem with the external users feature ?

Or maybe it's normal ? But for me this is not logical at all...

Thanks !

ELI5 the best way to deal with user logins?

Mon, 07 Mar 2016 17:52:33 +0000

We have a main website that is coded using the materializecss framework and the only purpose of that part of the website is to host a bunch of information. We have a second part of the website where we're setting up Q2A to handle questions. We wish to hide some content on the main website from the public (i.e. so only registered users can see it), and we wish to restrict the ability to ask and answer questions to only registered users on the Q&A part.

ELI5 what is the best way to setup users? Assume I'm a retard, because after staring at the documentation for an hour or two, I feel like one. :)

Problems using external-users in 1.7

Sat, 18 Jul 2015 02:33:03 +0000

I am trying to configure a second q2a site using the first q2a site db of users. But i'm having problems with the function qa_get_logged_in_user() in qa-external-users. After some researching I'm guessing that q2a stores the session ID inside a cookie (qa_key) and so I changed the preview value to qa_key and got this function:

if ($_COOKIE['qa_key']) {

$qa_db_connection=qa_db_connection();

$result=mysql_fetch_assoc(

mysql_query(

"SELECT userid, username, email, admin_flag FROM users WHERE userid=".

"(SELECT userid FROM sessions WHERE sessionid='".mysql_real_escape_string($_COOKIE['qa_key'], $qa_db_connection)."')",

$qa_db_connection

)

);

The problem is, I always get following errors:

Warning: mysql_real_escape_string() expects parameter 2 to be resource, object given in /home/matemati/public_html/meta/qa-external/qa-external-users.php on line 249

Warning: mysql_query() expects parameter 2 to be resource, object given in /home/matemati/public_html/meta/qa-external/qa-external-users.php on line 251

Warning: mysql_fetch_assoc() expects parameter 1 to be resource, null given in /home/matemati/public_html/meta/qa-external/qa-external-users.php on line 252

Any help?

How to move my q2a site from external to local users, without losing the users?

Wed, 10 Dec 2014 22:53:13 +0000

is it possible?

Today i'm working with external users (connected to AD), and I'd like to move to loca users, and maybe handle the creation myself. There are a lot of plugins who relies onthe users table, which doesn't exist on my scenario.

Any idea?

Thanks!

qa-external-users.php

Wed, 12 Nov 2014 02:42:11 +0000

Hello!

I've setup my external users file and it seems to be working ok so far but it's not propagating the screen name from my user database, the default is to use the users email address.

I'm getting the value from a custom query from my database using the cookie, here's what I'm returning to Question 2 Answer:

            if (is_array($result))
                return array(
                    'userid' => $result['member_id'],
                    'publicusername' => $result['screen_name'],
                    'email' => $result['email'],
                    'level' => $result['m_field_id_33'] ? QA_USER_LEVEL_ADMIN : QA_USER_LEVEL_BASIC
                );

The weird thing is that I've seen it work for some users, where they post a question and the screen name is used, but for the first questions that were posted it's still using the email address rather than the screen name... weird.

I still don't have my head wrapped around how Q2A pulls the user info using external user setup yet, I guess it's a live query? I know that the member ID is stored in the Q2A database, but I've not seen any settings in the admin to choose to display the screen name or email as the public name..