WebUser Interface |
||||||||||||||||||||||||||||||||||||||||||||||||||
|
When the Login page is displayed, users can enter their name and password, and start a WebUser Session.
The WebUser module checks for the domain name specified in the URL and presents the Login page for the addressed domain. If the CommuniGate Pro server provider.com has a secondary domain client.com, then the <http://provider.com:port> URL will display the provider.com Login page in a user browser, and the <http://client.com:port> URL will display the client.com Login page, even if the client.com has no dedicated IP address.
When the WebUser module retrieves the domain name from a URL, it runs it through the Router domain-level records. So, if the Router Table has a record:
www.client.com = client.com
If the URL specifies a domain that is not among the main and secondary server Domains, an error page is displayed. This usually indicates an error in your Server setup: the specified domain name has a DNS A-record that points to your server (otherwise the server will not get this request), but that name is not routed to any of the secondary domains on your server. You should either create a secondary domain with that name, or route this domain to one of the existing CommuniGate Pro domains.
If a URL specifies an IP address instead of a domain name, the WebUser module tries to find a secondary domain to which the specified address is dedicated. If no secondary domain is found, the main domain Login page is displayed.
Users can open any Account in any Domain from any Login page, if they specify the complete account name: if the Login page of the main Server domain is displayed (<http://provider.com:port>) and the username@client.com name is entered in the username field, the account username will be opened in the client.com domain (if the correct password is provided).
If a domain has some mailing lists, its Login page contain a link to the Mailing List archive pages.
If the Domain has the Auto-Signup option enabled, a link to the Auto Sign-up page is displayed on the domain Login page.
If the Domain has a custom Security Certificate, a Ceftificate link is displayed. If a user clicks that link, the Domain Certificate can be installed as a trusted Certificate in the user browser.
To provide the session-type functionality, the WebUser module implements a so-called application server: when a user is authenticated via the "login page", a virtual session is created. The virtual session is an internal server data structure keeping the information about the user, open mailboxes, and other session-related data, but it is not linked to any particular network connection. When the user is working with an account using a browser, the WebUser module routes browser requests to one of the already opened virtual sessions.
In order to route requests properly, the WebUser module creates a unique session identifier (session ID) for each virtual session created and makes user browsers include the session ID into every request they send.
To avoid "hijacking" of WebUser sessions, the WebUser module remembers the network (IP) address from which the login request was received, and routes to the session only the requests received from the same IP address.
Note: Sometimes, when a user works via a proxy server, the user requests may come to the Server from different IP addresses (if the proxy server uses several network addresses). In this case, the user should disable the address-controlling option on the WebUser Interface Settings page. Usually, users of large provders (such as AOL, WebTV) access the Internet via the provider's proxy servers, so their accounts should have the address-controlling option disabled.
To avoid "hijacking" of WebUser sessions, the WebUser module can use HTTP "cookies". When the Use Cookies option is enabled, the Server generates some random "cookie" string and sends it to the user browser when a session is initiated. The browser then always sends that string back to the Server when it tries to access any of the session pages. The Server allows the user to access the session data only when the valid "cookie" string is sent.
Note: Some browsers do not support "cookies" or can be configured not to support them. The user should check the browser options before enabling the Use Cookies option.
To configure a spell checker, specify the language the program can process, and path to the program file, and the character set the program can handle. The internal data presentation use the UTF-8 character set, so set the UTF-8 value if no convertion is needed.
Use the Log Level setting to specify the type of information the spell checker module should put in the Server Log.
The spell checker module records in the System Log are marked with the SPELLER tag.
Use the Enable check box to enable and disable the spell checker program without removing it from the program list.
To remove a spell checker program, enter an empty string into its Language field and click the Update button.
The spell checker program should provide the same "pipe" interface as the popular Ispell and aspell programs:
The Mailing Lists page displays all mailing lists created in the domain that have the allow anybody to browse option enabled. Each name is a link that can be used to open a page listing messages in the mailing list. Since mailing lists are archived in mailboxes, the mailing list WebUser interface is similar to the Mailbox Browsing interface.
The mailing list Web User Interface does not require any authentication, so no virtual session is created for list users, and each browser request is processed independently.
When a new account is created, its options and settings are taken from the domain Account Template.