Announcement

**glennrocksvb** · 04-12-2018, 06:30 AM

Topic moved.

Is this what you need?

How to log into vBulletin from an external script on your website - vBulletin Community Forum

https://www.vbulletin.com/forum/blogs/david-grove/4327147-how-to-log-into-vbulletin-from-an-external-script-on-your-website

When designing your website and integrating vBulletin with the rest of your site, it's often desirable to have a centralized login form for users to initiate a vBulletin session. Here are some instructions

**mak23de** · 04-16-2018, 03:52 AM

Something like that.
The only problem is that we don't have the password in plain text.

In the API documentation I found the method login2 ( http://vb5support.com/resources/api/...#method_login2 ), according to the documentation, the user can be logged in without password in plain text.

At the example of https://www.vbulletin.com/forum/blog...n-your-website I built a login with the method login2, see file in appendix.
To test the file test_login.txt must be renamed to test_login.php.

When calling the file via www.test.die_seite.de/forum/test_login.php I get the following error message:

HTML Code:

result: Array
(
    [errors] => Array
        (
            [0] => Array
                (
                    [0] => badlogin_strikes_logintypeusername
                    [1] => https://www.die_seite.de/forum/lostpw
                    [2] => 2
                )

            [1] => Array
                (
                    [0] => exception_trace
                    [1] => ## /var/www/die_seite//html/forum/core/vb/api/user.php(5099) Exception Thrown
#0 /var/www/die_seite/html/forum/core/vb/api/user.php(4937): vB_Api_User->processLoginError('MyTestUser', '', '1')
#1 /var/www/die_seite/html/forum/core/vb/api/user.php(4868): vB_Api_User->loginInternal(Array, 'MyTestUser', Array, Array, '')
#2 [internal function]: vB_Api_User->login2('MyTestUser', Array, Array)
#3 /var/www/die_seite/html/forum/core/vb/api/wrapper.php(199): call_user_func_array(Array, Array)
#4 [internal function]: vB_Api_Wrapper->__call('login2', Array)
#5 [internal function]: vB_Api_Wrapper->login2('MyTestUser', Array, Array)
#6 /var/www/die_seite/html/forum/core/vb/api/logwrapper.php(68): call_user_func_array(Array, Array)
#7 /var/www/die_seite/html/forum/test_login.php(62): vB_Api_Logwrapper->__call('login2', Array)
#8 /var/www/die_seite/html/forum/test_login.php(62): vB_Api_Logwrapper->login2('MyTestUser', Array, Array)
#9 /var/www/die_seite/html/forum/test_login.php(67): do_my_login_vb()
#10 {main}               
)

        )

    [userid] => 113508
)

If I call the page www.test.die_seite.de/forum/test_login.php more times behind each other, then I get the following email:

Dear MyTestUser,

Someone has tried to log into your account on Forum – Die Seite with an incorrect password at least 5 times. This person has been prevented from attempting to login to your account for the next 15 minutes.

The person trying to log into your account had the following IP address: xxx.xxx.xxx.xxx

All the best,
Forum – Die Seite

What do you think about the implementation?
Does the error message only hang when calling the vb classes?
Or are the user access data incorrect?

Sorry to be so late in answering, but I have a lot of work to do

Attached Files

test_login.txt (1.1 KB, 1 view)

**glennrocksvb** · 04-16-2018, 05:03 PM

The password in vB5 is using Blowfish encryption scheme. Is that how the passwords from CMS are encrypted? But even if the stored passwords are Blowfish encrypted, you can pass a plain text or MD5 password when calling the login API. The passed password will then be encrypted using Blowfish to compare against the database.

Announcement

Login from CMS to the forum

Login from CMS to the forum

Comment

Comment

Comment

Users Viewing This Page

Latest Posts