Post by AliceH » Thu Mar 14, 2019 7:32 am

I have recently switched from wordpress to joocart. when I added my customers into joomla it was a complete fiasco and a number of people seem to have managed to be locked out of their opencart accounts. I have over 2000 customers so I can't really check them all one at a time but I can't find where that info is stored in the database so that I can unlock them all in bulk. I can't filter the users who are locked either, only the customers who are disabled which is not the same thing. I just need a way to quickly unlock any locked accounts, (not disabled accounts)

https://www.embroidery-allsorts.com/


User avatar
Active Member

Posts

Joined
Sun Jan 09, 2011 11:00 am
Location - Australia

Post by IP_CAM » Thu Mar 14, 2019 1:05 pm

Well, exept for the Customer IP-Blocking Option, done by a Custom VqMod,
there is no Customer Account Locking possible, in a default OpenCart at least,
and so no Database Field, where such could be changed, as I am aware of.
You might therefore better get in touch with Joocart about this, I assume ...
Ernie

My Github OC Site: https://github.com/IP-CAM
5'600 + FREE OC Extensions, on the World's largest private Github OC Repository Archive Site.


User avatar
Legendary Member

Posts

Joined
Tue Mar 04, 2014 1:37 am
Location - Switzerland

Post by AliceH » Sat Mar 16, 2019 6:29 am

Thank you for your answer but there most certainly is an account lock on opencart I checked in the admin on the demo. I did find the setting to change the number of login attempts allowable before the account is locked.

https://www.embroidery-allsorts.com/


User avatar
Active Member

Posts

Joined
Sun Jan 09, 2011 11:00 am
Location - Australia

Post by straightlight » Sat Mar 16, 2019 7:16 am

AliceH wrote:
Sat Mar 16, 2019 6:29 am
Thank you for your answer but there most certainly is an account lock on opencart I checked in the admin on the demo. I did find the setting to change the number of login attempts allowable before the account is locked.
In your admin - > systems - > settings - > edit settings page. As for the time interval between the last and the next attempt, it is set automatically to one hour in your catalog/controller/account/login.php file:
if ($login_info && ($login_info['total'] >= $this->config->get('config_login_attempts')) && strtotime('-1 hour') < strtotime($login_info['date_modified'])) {

Dedication and passion goes to those who are able to push and merge a project.

Regards,
Straightlight
Programmer / Opencart Tester


Legendary Member

Posts

Joined
Mon Nov 14, 2011 11:38 pm
Location - Canada, ON

Post by letxobnav » Sat Mar 16, 2019 8:24 am

well, a customer account can be disabled so maybe that "status" field has been accidentally changed?

Code: Select all

		// Check if customer has been approved.
		$customer_info = $this->model_account_customer->getCustomerByEmail($this->request->post['email']);

		if ($customer_info && !$customer_info['status']) {
			$this->error['warning'] = $this->language->get('error_approved');
maybe do a query on the oc_customer table on status.

Crystal Light Centrum Taiwan
Extensions: MailQueue | SUKHR | VBoces

“Data security is paramount at [...], and we are committed to protecting the privacy of anyone who is associated with our [...]. We’ve made a lot of improvements and will continue to make them.”
When you know your life savings are gone.


User avatar
Expert Member

Posts

Joined
Fri Aug 18, 2017 4:35 pm
Location - Taiwan

Post by cyclops12 » Sun Mar 17, 2019 8:51 pm

From what i can make out during testing if you attempt to login with wrong credentials your attempt is logged in the customer_login table in your db
After 5 (default) invalid attempts the account becomes locked for 1 hour(default), in admin customers/customers the "unlock" button becomes active in the dropdown under Action to the right of customer.
When this button is pressed the relevant entry in the customer_login table is deleted, and the customer account is unlocked.

This only seems to happen when invalid login attempts are made, logging in with correct credentials does not get logged in the customer_login table
So you should be able to delete all entries in the customer_login table which will unlock all accounts

Always make a backup of db BEFORE making any edits to it (just in case)

Maybe someone else can also confirm this ?

Expert Member

Posts

Joined
Sun Sep 27, 2015 1:10 am
Who is online

Users browsing this forum: No registered users and 84 guests