WordPress.com Forums » Topic: Password-protected pages

drmike on "Password-protected pages"

drmike — Thu, 08 Jun 2006 21:24:31 +0000

Thanks for pointing that out to me. That's the first I've seen of it. Rather strange as IIRC Matt seems to strongly feel the importance of open blogs. I may be mistaken though.

Oh, Podz.... :)

sweetmagdalena on "Password-protected pages"

sweetmagdalena — Thu, 08 Jun 2006 21:18:18 +0000

Drmike - I got the site-wide protection idea from here:

http://faq.wordpress.com/2006/05/07/can-i-password-protect-my-whole-blog/

Thanks for the feedback, and thank you andy as well.

:-)

drmike on "Password-protected pages"

drmike — Thu, 08 Jun 2006 19:31:34 +0000

Oops, my mistake on that last bit. Sorry about that. :)

andy on "Password-protected pages"

andy — Thu, 08 Jun 2006 18:41:39 +0000

I don't know of any plans for site-wide password protection on WordPress.com.

You can set up HTTP authentication for your own hosted WordPress installation but WordPress itself does not handle that kind of privacy.

As for post passwords, only one password cookie is stored and it is not indexed by post ID. Thus, having the password for one post will allow you to view ALL posts having the SAME password until you clear cookies or enter a different password for a different post.

drmike on "Password-protected pages"

drmike — Thu, 08 Jun 2006 17:36:10 +0000

site-wide password protection

I could have sworn that we were told that this wasn't planned fo and we were directing people who needed it to a paid host.

Feedback sent.

Looking at the database on my install, the password is saved into each post record. So entering a password will onyl work for that specific post.

sweetmagdalena on "Password-protected pages"

sweetmagdalena — Thu, 08 Jun 2006 15:42:45 +0000

Do you know if this cookie issue has been resolved? Furthermore, if, as you noticed, greenpasture, it retains the last password entered, does that mean that a group of posts could all have the same password, and upon entering that password, the reader could view all of that group of posts without re-entering the password? hehe, As you can tell, I am _eagerly_ awaiting the implementation of site-wide password protection.

oinky on "Password-protected pages"

oinky — Sat, 29 Apr 2006 16:48:02 +0000

anyone happens to key in the password for a protected page and it jumps to the main page instead?
it happens to me everytime and i had to click the back space to go to the page i wanted to view
and the page is already open since i keyed in the password
seems weird

drmike on "Password-protected pages"

drmike — Fri, 28 Apr 2006 14:59:40 +0000

I would think even an hour would be too long. I'm rather curious as I do hosting as well and this has never come up over there.

cyanee on "Password-protected pages"

cyanee — Fri, 28 Apr 2006 11:14:14 +0000

the cookies only expire if we only go and manually delete away files and history in the internet options... and we canot really expect our readers to do that...

so yeah...right now we can't do anything about the page being displayed for 10 days

sent them the feedback ;)

drmike on "Password-protected pages"

drmike — Thu, 27 Apr 2006 19:40:53 +0000

Remember though that that cookie is just for that post.

I agree though. 10 days is a tad long. Maybe you should send in a feedback on this one. Matt and crew have stated int eh past that that's how they keep track of stuff like this.

Good luck,
-drmike

cyanee on "Password-protected pages"

cyanee — Thu, 27 Apr 2006 10:24:17 +0000

hmmm... maybe the cookies should really be changed.
the password should rightfully expire when we exit the browser... becasue cookies for 10 days aren't really safe!

oinky on "Password-protected pages"

oinky — Wed, 26 Apr 2006 15:05:00 +0000

oops! corrected question below

"so there is no other way?
what if i'm on a terminal that doesn't have administration rights and doesn't allow me to clear the cookies?"

drmike on "Password-protected pages"

drmike — Wed, 26 Apr 2006 13:51:22 +0000

Are you logged in to your WP blog? They show up if you have Admin status.

trying2be on "Password-protected pages"

trying2be — Tue, 25 Apr 2006 21:16:49 +0000

I have passworded a page. Yet when I look at it it shows up. I have noticed that if I put a / after the url then the password page comes up, yet is I remove the / then the page shows up for all to read. So, I'm now nervous of using the facility to password a page/post if all people have to do is take the / away from the url.

Is anyone else having this problem?

greenpasture on "Password-protected pages"

greenpasture — Tue, 25 Apr 2006 21:02:20 +0000

What I noticed is that if you have more than one pass-word protected Pages (with different passwords), then the cookies will only remember the last password you used.

So, this is a work-around solution (my suggestion only, as someone who does not know much about computer).

Create an empty password protected Page and each time before you sign off, enter the password into your 'empty' page, that way your cookie will only remember the password of that empty page and will not display the password of the other Page(s) that you want to keep private.

drmike on "Password-protected pages"

drmike — Tue, 25 Apr 2006 18:03:21 +0000

Wait a minute. You have admin rights and you're not allowed to clear cookies? That sounds backwards....

oinky on "Password-protected pages"

oinky — Tue, 25 Apr 2006 18:01:32 +0000

ok so there is no other way...

oinky on "Password-protected pages"

oinky — Fri, 21 Apr 2006 03:44:12 +0000

so there is no other way?
what if i'm on a terminal that has administration rights and doesn't allow me to clear the cookies?

options on "Password-protected pages"

options — Wed, 11 Jan 2006 09:27:08 +0000

Safari doesn't let allow session cookies either.

and since "post password cookies expire after 10 days", -- as ryan correctly noted, then if this Mac is shared w/ someone you don't want to read your protected posts you have an option to delete cookies: http://www.aboutcookies.org/deletecookies.asp#amsafarix

PS
there's some hackish workaround, but that's completely another option (would be off-topic here ;-)

redhead81 on "Password-protected pages"

redhead81 — Mon, 09 Jan 2006 06:38:58 +0000

Does that also go with Safari on Mac's? I used to be only a Windows user up until late last year, and everything changed - so did options for software and whatnot.

I have discovered that same problem when locking entries. I close down the browser, come back to my site and it's still showing up.

options on "Password-protected pages"

options — Sun, 08 Jan 2006 09:40:19 +0000

MS IE can either comletely block or allow to set cookies for host.

there are tools like Proxomitron et.al. which make cookies session only.

drhaisook on "Password-protected pages"

drhaisook — Sat, 07 Jan 2006 13:03:01 +0000

Is there any option in Internet Explorer to not save the cookies of a particular website?

ryan on "Password-protected pages"

ryan — Sat, 07 Jan 2006 02:49:34 +0000

I think post password cookies expire after 10 days.

paradox on "Password-protected pages"

paradox — Sat, 07 Jan 2006 02:32:54 +0000

I thought that this was weird as well, and I thought that's because I'm the author, but that happens on all computers. The only thing that I found will close it again, is changing the password.

drhaisook on "Password-protected pages"

drhaisook — Fri, 06 Jan 2006 19:38:04 +0000

Hi there,

First off I wanna say I've come from Blogger to WordPress, and what a big difference I felt! Anyways,

I've set up a page other than the blog (like the About page, for instance), and I've chosen it to be password-protected. Now when I type the pass, the next times I enter the page, it's open, even when I shut down the whole website, and restart my internet explorer, and even when I sign out.

I know this has something to do with 'cookies'. I want it to demand the pass everytime I enter the page (the main, not the subpages though). How could that be done?

Thanks in adv :)