ActiveDEMAND has a special custom field type called 'password'. This custom field type allows you to create several password assets that can be used to password protect groups of landing pages. The password system allows you to set up registration pages, password reset forms, and account confirmation logic.
The Password Custom Field type is only available in the Corporate Marketer package
Creating a 'Membership Area'
You will need the following landing pages:
- Registration page (not required, recommended)
- Password Create page
- Login page
- Password reset request page
- Membership page(s)
- Create your password custom field
- Create your 4 pages
- Edit your forms
Creating The Password Custom Field
In your account settings, scroll down to the Custom Field section of your account.
You can only create Contact password custom fields, not Organizations, Employees, or Brands.
The Password Options:
- Requires Confirmation: If checked, this will force the user to confirm the password before it can be used. The user can be sent an email with an 'account' confirmation link. The created password will not be used (i.e. the assets will be not available to the person until they confirm their login). Note, you can manually confirm a contact with a password by viewing the contact record's custom fields
- Password Registration URL: This is the URL of the webpage/landing page that contains the 'account registration form. This form will contain the 'Password Create' form elements.
- Login URL: This is the URL of the webpage/landing page that contains the 'login' form. The login form is a form that has the 'Enter Password' form element.
- Logout Link: This is a unique URL that is used to 'logout' (i.e. remove the session cookie) for a user. You can embed this link on a button or sidebar within the membership area (on a protected asset). If the user clicks this link, the current login session cookie will be removed which will force the user to use a password to enter the membership area again.
If the Registration URL and Login URL are not set, attempts to access password-protected assets will redirect the user to your website.
The Registration Page
You can either create a 2 step process (a registration page, and a password create page), or just direct people to a single page that has the password create form fields
Regardless of the path you choose, you will need to create an asset registration page that users will be directed to when trying to password access protect assets (i.e. landing pages). You can either create a landing page or a webform that will act as your registration form. In the form editor, you will find a
- 'Create a Password' form element
- 'Confirm Password' form element (this confirms the password created with 'Create a Password'
Add the Create a Password (and optionally the Confirm Password) form elements to your form. Editing the properties of the form element allows you to choose the password custom field associated with this element.
In the autoresponder for the Password Create page, if you chose to 'require account confirmation' in the password custom field, you will need to create an email that sends the prospect an 'account confirmation' link. The password they created will not be 'activated' until the user clicks the link sent in the email. The dynamic field that you embed in your email will be available in the custom field selector:
Now you have the 'registration page'. Next, you will need to set up the login page. Again create a form or a landing page that will act as the 'login' page for registered users. On this form, you will use the 'Enter Password' form element
Make sure you set the custom field in this element is set to your password custom field.
Now that you have a registration page and a login page created, Go back to your password custom field in your account settings and set the login and password creation URLs.
Creating your Login Page
This is just a regular landing page with a form that includes the 'enter password' form element.
You will need an email address form element and the 'enter password' form element on the form. If someone tries to access the protected page, they will be automatically redirected to the 'login' URL associated with the password custom field. After the user enters a valid password, they will automatically be directed to the asset they were trying to visit.
For the case of a user saving the 'login' URL, it is important that the user experience is correct. Thus we recommend setting the redirect on the form to go to the protected asset. Thus if the person is successful in 'logging in', the asset will render. If the person is not successful, the protected asset will push the visitor back to the 'login' page.
Password Status Block
When a user tries to log in or logs out, the system will redirect the user to the login page. In order to effectively communicate to the user the status of the action, add a Password Status block to your login page.
The Password Status block is a content block that will display text to a user based on the most recent login/log-out event.
- Password Login Attempt Failed Message: Displays this message to a visitor if they recently tried to log in and the attempt was unsuccessful
- Successful Logout Message: Displays this message to a visitor if they recently logged out
The block will render nothing to the user if the user has neither attempted to log in/log out
Password Reset Page
For the situation where people forget their passwords, you will need to give them an option to reset the password. This is just a landing page with at least an email address form element. The magic here is done in the autoresponder. You may want to put in a decision checking to see if a password exists for the contact ... if it does, you send an email (in the autoresponder workflow) that contains a link (button or otherwise) that uses the dynamic term associated with your password custom field. It is of the form:
Membership Area: Protecting Assets With Your Password
For the landing page that you want to 'password protect', go to the page properties and choose 'Page is visible to 'Visitors with a valid password' option
And select that appropriate custom field to protect the page with:
Now anyone who tries to access this page without a valid password will be redirected to the 'login page'. You will want to put a link to the registration page on the login page to ensure visitors can register to get the asset.