1
00:00:00,000 --> 00:00:05,000
So now that we have some information here on the Web site that is somewhat

2
00:00:05,000 --> 00:00:09,000
sensitive -- it's information that KinetECO doesn't want the general public to

3
00:00:09,000 --> 00:00:15,000
know what distributors are paying for their products -- we would like to make sure

4
00:00:15,000 --> 00:00:19,000
that only certain people have access to that information. Joomla

5
00:00:19,000 --> 00:00:24,000
out of the box has the Login link down here at the bottom of the screen, and when

6
00:00:24,000 --> 00:00:29,000
we click on that, and we scroll on down, we have the option, of course, of typing

7
00:00:29,000 --> 00:00:31,000
in our User Name and Password.

8
00:00:31,000 --> 00:00:34,000
We also have functionality here to recover our User Name and Password if we have

9
00:00:34,000 --> 00:00:38,000
forgotten them. But then notice this last link here called Don't have an

10
00:00:38,000 --> 00:00:44,000
account? Well, if we click on this, we are able to register for this Web site,

11
00:00:44,000 --> 00:00:49,000
just by filling out this form. And remember the Captcha down here we configured

12
00:00:49,000 --> 00:00:54,000
back in the components chapter? We turned this on as part of our contact form,

13
00:00:54,000 --> 00:00:58,000
and it also shows up here in our User Registration form.

14
00:00:58,000 --> 00:01:02,000
So anybody can come to this Web site now, and just fill in this tiny little

15
00:01:02,000 --> 00:01:06,000
bit of information, and they will have a login for the Web site, which means

16
00:01:06,000 --> 00:01:10,000
that anybody who fills out this form will be able to see the information for the distributors.

17
00:01:10,000 --> 00:01:15,000
That's probably not what we really want. We only want people to log in to this

18
00:01:15,000 --> 00:01:19,000
Web site who have that login. We don't want just anybody registering for the

19
00:01:19,000 --> 00:01:23,000
Web site; we want to have control over who has those logins.

20
00:01:23,000 --> 00:01:26,000
So I wanted to just show you some of the options that Joomla

21
00:01:26,000 --> 00:01:29,000
has for controlling who can register for your Web site.

22
00:01:29,000 --> 00:01:30,000
So here in the back-end of Joomla,

23
00:01:30,000 --> 00:01:36,000
if we go to Users, and we go to the User Manager, up here at the top, as we have

24
00:01:36,000 --> 00:01:38,000
seen in many other areas of Joomla,

25
00:01:38,000 --> 00:01:42,000
there is an Options button. If you go ahead and click the Options button, this

26
00:01:42,000 --> 00:01:46,000
is where we can configure some of these registration options.

27
00:01:46,000 --> 00:01:51,000
So first of all, do you want to allow user registration at all of any kind?

28
00:01:51,000 --> 00:01:53,000
So you can turn it on, or turn it off.

29
00:01:53,000 --> 00:01:58,000
If we simply turn off registration by saying No, and say Save, what will happen

30
00:01:58,000 --> 00:02:02,000
here on the login screen, when I go back to it -- I am just going to click on the

31
00:02:02,000 --> 00:02:06,000
Login link again down here in the bottom -- that link to register for the Web site

32
00:02:06,000 --> 00:02:11,000
is completely gone, and that functionality is disabled. So here I have just shut

33
00:02:11,000 --> 00:02:14,000
off registration for the Web site altogether.

34
00:02:14,000 --> 00:02:15,000
There are some other options, though.

35
00:02:15,000 --> 00:02:19,000
When somebody registers for the Web site, if you do have self-registration turned

36
00:02:19,000 --> 00:02:24,000
on, when someone registers for the Web site, what user group do they join?

37
00:02:24,000 --> 00:02:26,000
By default, they become Registered users,

38
00:02:26,000 --> 00:02:30,000
which is probably a good choice, particularly if you're letting just anybody

39
00:02:30,000 --> 00:02:31,000
register for your Web site.

40
00:02:31,000 --> 00:02:35,000
That means they can log in, but they can't do anything else. They can't edit

41
00:02:35,000 --> 00:02:38,000
anything, they can't create anything, they can't delete anything, they

42
00:02:38,000 --> 00:02:39,000
can't publish anything.

43
00:02:39,000 --> 00:02:44,000
So think very carefully if you want to change that New User Registration Group.

44
00:02:44,000 --> 00:02:49,000
We can also specify the Guest User Group, and by default, that's Guest, and if for

45
00:02:49,000 --> 00:02:52,000
some reason you ever wanted to change that, you can.

46
00:02:52,000 --> 00:02:57,000
The Send Password option here has to do with, when somebody registers for the

47
00:02:57,000 --> 00:03:01,000
site, or you register someone for the site, as we created a user for this site in

48
00:03:01,000 --> 00:03:02,000
the back-end of Joomla,

49
00:03:02,000 --> 00:03:07,000
if they self-register, will an e-mail be generated that sends out to the person

50
00:03:07,000 --> 00:03:12,000
who had the account created for them, and will that password information be

51
00:03:12,000 --> 00:03:13,000
included in that e-mail?

52
00:03:13,000 --> 00:03:15,000
So you can turn that on or off there.

53
00:03:15,000 --> 00:03:19,000
The next thing that's of interest is this New User Account Activation, so we

54
00:03:19,000 --> 00:03:23,000
have three choices here: None, Self, or Admin.

55
00:03:23,000 --> 00:03:28,000
What this indicates is, None would mean I can register for the Web site on the

56
00:03:28,000 --> 00:03:32,000
front-end of the Web site, and I'm immediately able to log in to the Web site

57
00:03:32,000 --> 00:03:33,000
once I've registered.

58
00:03:33,000 --> 00:03:35,000
I can immediately go and log in.

59
00:03:35,000 --> 00:03:41,000
Self indicates that I have to have an e-mail sent to me first. The e-mail has

60
00:03:41,000 --> 00:03:43,000
the little link in it that I click on;

61
00:03:43,000 --> 00:03:47,000
when I click on the link, then I can log into the Web site.

62
00:03:47,000 --> 00:03:50,000
So basically what Self registration does is it makes sure that people aren't

63
00:03:50,000 --> 00:03:53,000
registering for your Web site with bogus e-mails. They have to receive an e-mail

64
00:03:53,000 --> 00:03:57,000
that confirms that it is in fact a real e-mail, where they can check their e-mail,

65
00:03:57,000 --> 00:04:01,000
and they have to click on the link before they can log in to the Web site.

66
00:04:01,000 --> 00:04:06,000
And Admin means that you can register for the Web site, but you are not able

67
00:04:06,000 --> 00:04:11,000
to log in to the Web site until an Administrator or Super administrator logs

68
00:04:11,000 --> 00:04:17,000
in to the back-end of the Web site, and confirms that you are able to access the information.

69
00:04:17,000 --> 00:04:21,000
So the question is, what is best in the case of KinetECO?

70
00:04:21,000 --> 00:04:25,000
Well, I've actually just turned off user registration.

71
00:04:25,000 --> 00:04:30,000
There's not that many distributors for the Web site right now, and as they sign up

72
00:04:30,000 --> 00:04:33,000
new distributors, someone will have to come into the back-end of Joomla,

73
00:04:33,000 --> 00:04:36,000
and create a new account for that particular distributor.

74
00:04:36,000 --> 00:04:38,000
I don't think that's the end of the world.

75
00:04:38,000 --> 00:04:42,000
They're just signing up a few distributors a month; it's not a huge amount of work.

76
00:04:42,000 --> 00:04:48,000
The other option would be to Allow User Registration, but set the New User

77
00:04:48,000 --> 00:04:51,000
Account Activation to Admin.

78
00:04:51,000 --> 00:04:56,000
And so what that would mean is that anybody could register for the Web site, but the Joomla

79
00:04:56,000 --> 00:05:02,000
Administrators would have to go in and allow only those who are really permitted

80
00:05:02,000 --> 00:05:06,000
to access the Web site, so they'd have to hear from the sales team who are signing up

81
00:05:06,000 --> 00:05:11,000
the distributors, and confirm that the e-mail addresses match before they

82
00:05:11,000 --> 00:05:15,000
enable that particular login for the Web site.

83
00:05:15,000 --> 00:05:20,000
I think that that second option is a little bit more work, potentially, for the Joomla

84
00:05:20,000 --> 00:05:25,000
Administrator, because sometimes you wind up getting a lot of bogus

85
00:05:25,000 --> 00:05:29,000
registrations on a Web site, and while Captcha will help keep those down to a

86
00:05:29,000 --> 00:05:33,000
minimum, you could still wind up with a lot of work of cleaning out people who

87
00:05:33,000 --> 00:05:36,000
are not really supposed to be registered for that particular Web site, as opposed

88
00:05:36,000 --> 00:05:40,000
to you are going to have to create a few logins every month.

89
00:05:40,000 --> 00:05:44,000
So you are just going to have to weigh which creates less work on the part of the Joomla

90
00:05:44,000 --> 00:05:49,000
Administrator. And also, of course, thinking about customer service, as to whether

91
00:05:49,000 --> 00:05:52,000
you want your distributors registering for the Web site, or whether you want to do

92
00:05:52,000 --> 00:05:54,000
them the service of registering for them.

93
00:05:54,000 --> 00:05:58,000
So those are sort of the big things that you might want to configure here in

94
00:05:58,000 --> 00:05:59,000
the back-end of Joomla.

95
00:05:59,000 --> 00:06:04,000
Just a couple of other minor things here; you can allow people to change their

96
00:06:04,000 --> 00:06:08,000
login name, or not, so you can turn that on and off.

97
00:06:08,000 --> 00:06:12,000
The Maximum Reset Count here on the screen is how many times can somebody change

98
00:06:12,000 --> 00:06:18,000
their password, so right now it's set to a maximum time of 10 times. And how long

99
00:06:18,000 --> 00:06:21,000
do they have between the ability to change their password?

100
00:06:21,000 --> 00:06:25,000
Well, they have to wait at least an hour to change their password; that's what

101
00:06:25,000 --> 00:06:26,000
these two dropdowns are about.

102
00:06:26,000 --> 00:06:30,000
So you could minimize a number of times somebody could change their password, and

103
00:06:30,000 --> 00:06:34,000
you could stretch out the amount of time that they have to wait before they can

104
00:06:34,000 --> 00:06:35,000
change their password again.

105
00:06:35,000 --> 00:06:38,000
Again, this is all about security, and managing your users, and so forth.

106
00:06:38,000 --> 00:06:43,000
So, the only thing that I wound up changing on the screen is I set my Allow User

107
00:06:43,000 --> 00:06:47,000
Registration to No. I've left all the rest of these settings alone, and I am

108
00:06:47,000 --> 00:06:49,000
going to go ahead and say Save & Close.

109
00:06:49,000 --> 00:06:53,000
And so now on the front-end of the Web site, I don't have the link anymore to

110
00:06:53,000 --> 00:06:55,000
register for the Web site, and that's okay.

111
00:06:55,000 --> 00:06:59,000
What I will be doing is, as new distributors are signed up, I'll be creating

112
00:06:59,000 --> 00:07:03,000
logins for them, and that'll work just fine. There's only a few of these per

113
00:07:03,000 --> 00:07:07,000
month, so it's not a huge amount of work that I'm taking on by doing this.