Goals:

• Switch AGTEK website over to https
• Provide and integration to the Apps section of AGTEK Acccess
• Update to a more general/capable language base (from asp to php)
• Give content control over to a variety of non-technical stakeholders (support, marketing, training, etc.)
• Provide modern conveniences like shared authentication integrated with the license system, reset passwords, capture email contacts, better insight to website usage patterns (who at a company uses support)
• Hand off 95% of website function to a more appropriate department

PHP - AWS server - SQL for data - SSL protected

The current test server that will role into the base server is here: testweb.agtek.com. I'll change the DNS when appropriate to reflect the change:

NOTE: This server does currently support the active website for form processing so do NOT leave it down and take care on rebooting. Also, the process of turning on certificates caused a problem when originating on the current AGTEK websites. Most likely due to change between hosts

Some pages like videos and downloads require user authentication to be accessed. On any protected page the following php include (protect.php) is placed to both check a session variable 'accessp' for a setting of “yep” or send the user to the login screen while remembering the page the user was attempting to access. Protect.php looks like this right now:

<?php
session_start();
$url =  "http://{$_SERVER['HTTP_HOST']}{$_SERVER['REQUEST_URI']}";
$escaped_url = htmlspecialchars( $url, ENT_QUOTES, 'UTF-8' );
$_SESSION["lastpage"] = $escaped_url;

$access=$_SESSION['accessp'];  // Set the access variable = to the session variable accessp
		 
		 if($access<>"yep")   // check to see session check is correct
		 {
		  //header("Location: /login.html");
		 header("Location: http://testweb.agtek.com/login.html");
		  
		 //echo "<span onload='droploginFunction()'></span>";		  
		  
		  //echo "<script async='async'>document.getElementById('loginscreen').style.display = 'inline-block';</script>";
		  // echo "<script >document.getElementById('myDropdown').classList.toggle('show');</script>";
          
		  // header("Location: #loginscreen");
			die();
          }
?>

Authentication currently uses a SQL database for the comparison but ideally will use the access key system to set session variable. If we find we want a different login page or session variable, changing the code above to reflect that will propagate the change easily.

Admin Page - Needs authentication added http://testweb.agtek.com/agadmin.php

Allowing different Stakeholder to keep their data up to date

Support System pages - Peter

Video pages - Greg

Marketing/Sales - Takeoff Services list, modeling services list, Webinar landing and other supporting pages

Software downloads - Ted

Authentication - Derived from license server -

Marketing pages (product text)

Using an include for some header information including CSS versioning to allow forcing CSS updates through renames. Currently some small CSS changes don't propagate to existing users because of browser caching. It's not practical to change all pages other than an include

These are the assigned page ID's currently in use. The master css file is here: