tags:

views:

37

answers:

4
Q: 

How to use PHP-based authentication from non-PHP based AJAX app?

I've been asked to create a stand-alone webapp using "straight" HTML and Javascript that does user authentication against an existing PHP app (backend is MySQL). Unfortunately, I really don't have a firm grasp on how PHP authentication works, and I'd rather not invest a lot of time in learning PHP just for this particular case.

I can see two possibilites so far

1) create a PHP wrapper around my new app and use native PHP authentication (don't like this)

2) create a simple REST-ful webservice around the PHP authentication (don't know how to do this)

Anything else I should consider? Help is much appreciated!

A: 

There is no such thing as PHP authentication. It is either:

  • HTTP authentication, using HTTP headers.
  • authentication by submitting an HTML form.

Maybe your website can call the login page of the PHP webapp, and check if it succeeded.

Sjoerd  2010-06-18 08:22:53
+1  A: 

There is no one standard way of doing php authentication. Typically it involves storing some information or UID in sessions, but it's difficult to generalize.

You need to find out how the existing authentication works by looking at what forms are submitting where.

For example, if you find that the login form is something like

<form id="login" action="login.php">
<input type="text" name"username">
<input type="password" name="password">
</form>

You can emulate a form submission using an AJAX call.

Such a call might look something like this in JQuery:

<script>
$(document).ready(function() {
  $("form#login").bind("submit",function() {
    $.post("login.php", "username=INSERTUSERNAMEHERE&password=INSERTPASSWORDHERE");
    return false;
  });
});
</script>
Jamie Wong  2010-06-18 08:24:14
Thank you for the tip, that makes sense. Get hold of the author of the original PHP app, and said he'll make some custom php "services" for me to call. Think it'll turn out well.
DavidR  2010-06-18 15:26:17
A: 

"PHP authentication" usually accepts a user name and password, and subsequently (if they're correct) marks the current session as "logged in" somehow.

It may be enough to submit the application's login form via Ajax using the right credentials.

Pekka  2010-06-18 08:25:25
A: 

here's what I would do:

$('form#login').submit(function(e){
    e.preventDefault();
    var formValues = $(this).serialize();
    $.ajax({
      url: 'login.php',
      type: 'POST',
      dataType: 'html',
      data: formValues,
      success: function(data, textStatus, xhr) {
        $('.login-response').html(data);
      }
    });
});

and your html would be like this:

<form id="login" action="login.php">
    <input type="text" name"username">
    <input type="password" name="password">
    <div class="login-response"</div>
</form>
JSD  2010-06-18 16:00:14

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases