Extraction of Members Usernames Without SQL Access?

[Witch-king of Angmar]

Hi guys,

I am looking for way to extract all usernames from memberlist without access to MySQL.

Any ideas how to do it? Is it possible to give some parameter to memberlist via URL to show more than 50 records per page and then copy whole table to excel for example?

Thank you very much for any idea!

[Deaks]

this is quite impossible to do without access to mysql, sorry, it would also pose a security issue.

[margarett]

Actually I seem to remember a mod or a discussion about a mod that allows this...
Can't find it, though...

[Kindred]

Oh... It would not be difficult to write an extract mod, your do all the SQL commands in the php file instead of in MySQL, just a pain for something which is better done in other ways.

Actually, I think this would be rejected from the mod site as a major potential security hole

[Arantor]

I don't actually see it as a security hole if exposed in the admin panel, actually. The information is already available anyway in almost all cases; just not in automated ways.

I'm seriously debating writing such a plugin as a paid mod (which will also discourage those who want to use it for nefarious purposes in my experience)

[Kindred]

I'd trust it if it was written by you...  Lol

[Arantor]

I'd hope most mod authors could get this one right, actually. Basic permissions checks are not hard to do in SMF:

Code Select Expand

isAllowedTo('admin_forum');

Done. Secure

There's other things to protect against, of course, but that's the sort of thing you'd have to deal with. The real complexity, such as there is any, ultimately comes down to exposing things like custom fields as well.