Login's [!isLoggedIn] vs resource groups – Any security difference?

76 Posts

johnnyp Reply #1, 8 years, 9 months ago

Hi,

I just started using the login package; it offers redirection of unauthorised access via [[!isLoggedIn]].

I just wanted to ask, are there any security concerns with having each private page protected via [[!isLoggedIn]] rather than a resource group lockout?

I have always used resource groups until now, so my gut says just serve the usual 404 page, but I really like the idea of the unauth redirect.

This question has been answered by BobRay. See the first response.

discuss.answer

24,544 Posts

BobRay Reply #2, 8 years, 9 months ago

The only thing you lose is the ability to give different front-end users different capabilities. Everyone who can log in to the front end is treated equally. If that's not a problem, I don't see anything wrong with what you're doing.

Did I help you? Buy me a beer
Get my Book: MODX:The Official Guide
MODX info for everyone: http://bobsguides.com/modx.html
My MODX Extras
Bob's Guides is now hosted at A2 MODX Hosting

76 Posts

johnnyp Reply #3, 8 years, 9 months ago

Thanks for the reassurance Bob, I think I will go with Login's method for now.

Answered Login's [!isLoggedIn] vs resource groups – Any security difference?