[#45440] - [Session Manager] for frontend
- New
- Medium
- Build: 5.3-dev
- # 45440
Is your feature request related to a problem? Please describe.
Users of websites on @joomla do not have the ability to see information about their user sessions on the website.
I'm talking about regular users, not admins and moderators.
Describe the solution you'd like
I suggest adding to the user information page (frontend) information about all current user sessions, as well as all sessions (logins) of the user from any other devices for the last month (this information can be taken from the User Actions Log component).
There should also be a "End Session" button for all user sessions (including the current session) in the list of devices from which the user has accessed the website and from which he is currently online on the website.
I believe that nowadays every user has the right to know what devices they are currently online from and what devices (plus IP address) they have used to log into a website in the last month for their own security.
Users can request to download their data, as this information is collected via the User Actions Log component, but it would be nice if this information was available to everyone without a separate request to download the information.
Users have the right to know if someone has used their account without their knowledge.
I'm requesting this feature so that the security of website users on Joomla will be much better enhanced.
Additional context
Joomla is used by both government organizations and small businesses, and online stores and users of such websites should have information about whether their login and password have been compromised, resulting in someone being able to access their account from another device.
joomla-cms-bot
- | Labels |
Added:
No Code Attached Yet
|
||
hell no - are you just spouting random garbage you heard about online and asked AI to turn into something that vaguely sounds like it could be useful without having the first clue what you are talking about. There are many useful things that can be improved with Joomla - this isnt one of them.
Please don't mis-use this repository as your personal blog
have you ever logged into your Google or Facebook account from a new device?
do you even understand what kind of account security measures exist in 2025?
or are you still living in 2005, when Joomla was just released and no one cared about user security?
20 years have passed and this world has changed a lot, millions of accounts are hacked every week and all this data about millions of users of different websites is leaked to the internet.
I just wish that websites on Joomla were more secure, so that websites on Joomla would not be an easy target for hackers who massively hack many websites every week in order to commit fraud using leaked personal data of users.
Have you or anyone you know ever received a scam call?
They use personal data of users that have been leaked from various websites to commit fraud, and then use this information to steal money from people's bank accounts or for other bad purposes.
If we can do something to better protect personal data and user accounts, why not do it?
Or do you think that every Internet user is a software developer who knows that you need to change your password every 5 days and use a 20-digit password, use 2-FA and all the rest?
I will surprise you, but most ordinary Internet users, especially older people, do not know so well how to properly protect their accounts and their data on the Internet!
I just wish that websites on Joomla were more secure, so that websites on Joomla would not be an easy target for hackers who massively hack many websites every week in order to commit fraud using leaked personal data of users.
where is your joomla specific evidence for this?
again this is just random word vomit
"i will surprise you, but most ordinary Internet users, especially older people, do not know so well how to properly protect their accounts and their data on the Internet!"
but they would check their sessions... LOL
but they would check their sessions... LOL
if we reason like you, then we can completely abandon HTTPS in favor of regular HTTP and use the same 4-character password everywhere, right?
giving the user the ability to protect their personal account would be a reasonable solution, even if not every user takes advantage of it.
whoever needs it will be able to better protect their account.
do not forget that there are thousands of online stores on Joomla and users have the right to have an additional level of protection for their personal data, because if someone intercepts their session, they can steal their bank card data and other personal information to hack their bank account - this is exactly what scammers do every day, hacking thousands of websites, they simply steal ordinary people's data and empty their bank accounts, there is a lot of news on the Internet about this.
I'm not sure we are using the same joomla, but, compared to wordpress, joomla has much better security and data protection options built in already. You can force your users to use 2 factor authntication, you can also use the privacy component to manage collected data, end delete it on request, etc . So it is already a pretty good system.
And guess what, if you put in some energy or money (actually same thing), you will have your session manager on the frontend. I believe it is pretty easy to develope it, especilly nowadays.
But it looks like you don't appreciate this, so better no use it.
compared to wordpress, joomla has much better security and data protection options built in already
Joomla does not compete with WordPress for the opportunity to get authors and creators, Joomla competes with any modern systems for the attention of authors and creators, with such user systems as Google, Facebook, Twitter, WhatsApp.
20 years ago when Joomla 1.0 was released the internet world was completely different and the only way to share content on the internet was a personal blog or forums but today there are many other apps where people can share content so Joomla competes with each of these systems, it is not only a competition with other CMS like WordPress.
you will have your session manager on the frontend. I believe it is pretty easy to develope it, especilly nowadays.
That's why I created a feature request, because I also think it would be pretty easy for developers to do this because it's already done for Control Panel.
hell no - are you just spouting random garbage you heard about online and asked AI to turn into something that vaguely sounds like it could be useful without having the first clue what you are talking about. There are many useful things that can be improved with Joomla - this isnt one of them.
Please don't mis-use this repository as your personal blog