Is mandatory member approval by admins available?

  • Resolved Maxcom

    (@maxcom)


    1 week, 1 day ago

    We need a simple membership system where users in an educational setting can apply for membership to an intranet type site (so the entire site is behind a door), which approval by admins is required before access is granted to the website. Is this an option? I think you have an email check in your registration response request but we require both that and mandatory admin approval.

    Also do you have options for domain and ip blacklisting? There are many email domains we wish to block as well as ip ranges (Chinese, Russian, Indian and more – the usual crew). Server resources are not an issue.

    Finally, you have a form, but what anti-spam/bot measures are implemented? IF you have little to none can we use gravity forms for the registration form tied to your membership system?

    Security is hugely important for the use context, and we find most member plugins seem to be built without any security at all in context of the above.

    Thank you in advance for your comprehensive replies to the above questions.

Viewing 1 replies (of 1 total)
  • Plugin Support Amrit Kumar Shrestha

    (@shresthauzwal)

    Hi @maxcom,

    Thank you for reaching out with your requirements. Let’s address your questions one by one:

    1. Membership System with Admin Approval:
      Yes, we can set up a simple membership system where users need to apply for membership, and their applications require admin approval before they can access the site. This can be achieved by creating a registration form with the admin approval feature enabled. Once a user submits the form, an email notification will be sent to the admin for review and approval.
    2. Domain and IP Blacklisting:
      We do have options for domain and IP blacklisting. You can configure the plugin to block specific email domains and IP ranges. This can be done through the plugin’s settings, where you can specify the domains and IP ranges you wish to block. For example, you can block email domains like gmail.com, yahoo.com, etc., and IP ranges like those from China, Russia, India, etc.
      Note: This feature is available in the premium version.
    3. Anti-Spam/Bot Measures:
      We have several anti-spam and bot protection measures in place:
    • reCAPTCHA and hCaptcha: You can integrate reCAPTCHA or hCaptcha to prevent bots from submitting forms.
    • Akismet: The plugin integrates with Akismet to filter out spam registrations.
    • Honeypot: An invisible field can be added to the form to catch bots.
    • Hide default login and registration: Allowing registration to open the default login and registration is the main area the spammer can attack with the spam registration.

    4. Using Gravity Forms: We do not have a direct integration to start registration from Gravity Forma; we manage membership only from the User Registration & Membership plugin.

    Instead, we recommend you to use User Registration & Membership for registration and manage your members on your site

    Best regards,
    Uzwal

Viewing 1 replies (of 1 total)
  • You must be logged in to reply to this topic.