ansaurus

Question

Joomla - Determining whether logged-in user is an Admin

Answer 1

+1 A:

Peter,

I concur on the joomla sentiments, we use .net/php here as well and have a few projects that were started on joomla for some unknown reason !!

amnyway, another finer grained approach may be to examine the actual rights that the user has, rather than them being suoper admin etc. you can get to this info along the following lines:

    $user =& JFactory::getUser();

    if ($user->authorize('com_content', 'edit', 'content', 'all')) {
            echo "<p>You may edit all content.</p>";
    } else {
            echo "<p>You may not edit all content.</p>";
    }

    if ($user->authorize('com_content', 'publish', 'content', 'own')) {
            echo "<p>You may publish your own content.</p>";
    } else {
            echo "<p>You may not publish your own content.</p>";
    }

i know it's still hardcoded but at least it's user specific, rather than priviledge specific. this approach does however allow you to target specific 'component' related priviledges, so might be useful for you.

I'll track the replies to see if there's a 'proper' answer as it definately is an omission.

jim

jim 2010-07-26 11:28:45

cheers, jim. I was just looking at the authorize() function but it's not quite what I need. I often need to check specifically for the one and only super administrator and then filter or not filter some of entries in the back-end administration panel. I often need to check whether the logged in user is 'Super Admin' or 'Admin'.

Peter Perháč 2010-07-26 11:34:59

peter - in that case, the search continues :)

jim 2010-07-26 11:42:33

I guess I'll have to offer a bounty :-) but only a very small one

Peter Perháč 2010-08-03 12:01:37

Answer 2

A:

Hi Peter,

The following could be a hack on Joomla. I tried it and got worked.

Take the case of sessions

$_SESSION[__default][user]->usertype;

This will give the type of user logged in you can use this in any conditional statements

srinivas 2010-08-04 09:22:56

sorry but I know how to get to the current user's usertype attribute, as you could have noticed in the question itself:$user =if($user->usertype == ...But this still only returns a string representation of the user type and then I have to do string comparisons...

Peter Perháč 2010-08-04 10:57:10

Answer 3

A:

If ur joomla administrator username is admin then u can use below code aspeter described before

$user =& JFactory::getUser();
if($user->usertype == "Super Administrator" && $user->username == "admin")
{
  //... do what ever
}

JustLearn 2010-08-05 03:51:20

Oh, no, no, no. Don't like the looks of this. The moment someone configures the admin to use a different name, the whole application will break in various places. Plus, it's recommended to change the default admin user name to something else for the production system.

Peter Perháč 2010-08-05 08:59:48

sorry Peter, i m also newbie, i just suggest, thanks to updating my knowledge

JustLearn 2010-08-05 12:12:57

Better still, use the admin user only to create another Super admin user and deactivate the first one. That's like renaming the administrator-Folder (which is less easier to do) to keep the 90% of easy attacks out.

giraff 2010-08-07 10:04:00

@giraff, even better, yep! :-) btw, JustLearn, I see you're just learning, no worries. The down-vote is not from me, I believe even your contribution contributes to the topic., so I'll even that out by an up-vote

Peter Perháč 2010-08-09 12:51:42

@Peter Thanks Dear

JustLearn 2010-08-10 09:41:37

Answer 4

+2 A:

giraff 2010-08-05 20:50:12

nice answer indeed. Thank you.

Peter Perháč 2010-08-07 18:08:47

ansaurus

tags:

views:

answers:

Joomla - Determining whether logged-in user is an Admin

related questions