Security in your PHP-Nuke site controls 'who can do what' in a particular place. There are two fundamental problems of security here:
Authentication: The problem of deciding if the user is who they claim to be
Authorization: The problem of what that user is able to do when browsing the website
PHP-Nuke solves the authentication problem with user accounts. It authenticate users (when necessary) by asking for a username and password combination.
PHP-Nuke solves the authorization problem by classifying the status of the visitor into one of the following:
Registered Users: Visitors with a user account who have logged in with a valid username and password.
Administrators: Users who are logged in with an administrator account (in other words a username and password that are valid on the
admin.php
page).Anonymous Users: People who have not logged into the site. Until a visitor registers and logs in, he or she has no identity and is hence anonymous.
Subscribed Users: This...