We have produced a very personalized Joomla 1.5 based site and wish our super administrator to have the ability to log into registered user accounts therefore we can offer better phone support and enable them to configure their accounts remotely.

This can clearly try taking some coding. Ideally we would like a hyperlink in the admin side which will take us towards the front-end and instantly log us in because the registered user. We'll lock it lower by Ip and possess some kind of password too.

Where does the login get processed? It appears like /components/com_user/controller.php calls a function known as $mainframe -> login() Where does that function reside?

Our thought would be to send a mock login form together with one more super-user password area. Then we'll customize the login code to authorize the login when the password exists and also the Ip is correct.

Any words of knowledge or caution with this particular approach?

There's really a wordpress plugin that is going to do this: http://extensions.joomla.org/extensions/access-a-security/authentication/4806

You will want to build an authentication wordpress plugin additional. You are able to enable as numerous authentication plug ins as you desire (the core wordpress plugin, OpenID, your personal wordpress plugin, etc...). Joomla will run lower their email list of enabled plug ins until one of these sets the status variable from the $response resist JAUTHENTICATE_STATUS_SUCCESS. The $response object will get passed directly into your plugin's onAuthenticate method. Have a look at plug ins/authentication/example.php for any obvious example. You'll most likely finish up cloning plug ins/authentication/joomla.php and repurposing it to your requirements.

I'd publish your custom wordpress plugin after the core Joomla authentication wordpress plugin to ensure that normal customers will have the ability to sign in faster.

Also, should you choose want to choose an application too, you will have to develop a small component to ensure that you will get the username and super-user password in to the request.