santamaria wrote:after a users password and username are verified
Do you really mean that? Or do you mean after making sure both are correct?
santamaria wrote:just once on initial login
Are you aware that this won't happen for auto-logins?
santamaria wrote:I've found the switch $method = login section in ucp.php but can't seem to patch in there
What have you done, what did you expect and what happened instead? Hint:
/ucp.php can't be any help, because it only calls
login_box()
which already redirects the HTTP request on successful logins and I wonder why you haven't noticed that when inspecting that function...
santamaria wrote:Doesn't anyone know how the login system works?
I know. But maybe we even need to know the authentication system (database, or Apache, or LDAP, or...), based on what exactly you want.