[SOLVED] Need help with blocking shared usernames and passwords

[rondog]

I have to create an application where a company will buy a certain amount of usernames and passwords. We dont want it so they buy a couple usernames and passwords and share them amongst a hundred different people.

 

A little background; once the company buys them, the people actually have to go and sign up under their companies name. I thought of locking that username and password to the computer they were at by IP address, but if its a company building, its very possible they all have the same IP and are on a router. Locking it to a specific computer would be fine, but it needs to go deeper than IP address. Is their something else in PHP that knows more about the computer like a mac address or something? I just need to avoid sharing username and passes. Any idea?? thanks!

 

-Ronnie

[atlanta]

Dont know of any other good way you could do it in PHP but know of a few in c# if u know how to code in it.

[roopurt18]

You can't effectively stop people from sharing account information.  IP addresses aren't reliable, neither are cookies.  Don't even waste your time tackling this headache.  The solution lies elsewhere.

 

Instead of trying to limit people from sharing accounts, you should just allow them X number of people logged in at any one time.  Let them create any number of accounts that they want for the employees; after all the overhead on your DB for extra user records is minimal.  If they have purchased licensing for 5 people, as long as no more than 5 people are logged in at a time it's not really a problem.  That actually works out better on your end because more people will want to use the software, but be unable to because of all available licenses in use, and then they'll likely order more licenses.

 

 

[rondog]

Limiting the number of licenses in use at one time could work. Thanks for the idea.

-Ronnie