tags:

views:

77

answers:

2
Q: 

Patterns for replicating user data from one software to another

I have a website that I've integrated with a popular forum software (phpBB). I have it setup so users that login to the main site automatically are logged in to the forum software as well. I do this by authenticating through the forum's API at the very same time.

When someone registers for the site, an entry goes in to the main site database and an entry goes in to the forum user database (using the forum API).

The primary id of the forum user table is stored in a column in the main site user DB. This is saved at the time of registration: the registration process first creates a forum user, then passes back the ID in to the query that creates the user in the main site.

When a user logs in, if they authenticate with the main site, that ID is pulled and passed in to the forum login API to login the correct person.

However, a weird thing seems to happen randomly: one in every 30 or 40 people that registers ends up with a forum user id that is not their own in the main site user table. I know how to look for these problems and fix them on case by case basis and have scripts in place to do so, but that seems like more of a bandaid, not a fix.

Is this a common problem when linking data like this, or does this seem like something more specific with the software? Because of the randomness of this issue its been hard to debug.

+1  A: 

I would suspect Session Management. Are you intentionally or unintentionally reusing session ids?

le dorfier  2009-01-22 22:16:00
No, I wouldn't think so anyways. I don't see how that would make the primary user id in the main site table change to someone else's key during registration, though. At that point in the registration no session even exists.
Andy Baird  2009-01-22 22:42:55
phpbb uses a session # in a cookie to determine if I'm already logged on. So the session # in my cookie is identified with a host session that is assigned to a me. If the session number is reused and associated with a new user, my old cookie submits that session #, and phpbb thinks I'm the new user.
le dorfier  2009-01-23 05:32:47
A: 

I've done something similar with vbulletin, by directly using the forum's mysql database to autheticate the main site, and other sites (they're all on the same machine)...

In your case, I would add the site-specific fields that are not in phpBB database in the site's db, and link it to phpbb by user_id... It could be one form on the main sites that inserts into the two databases (some in the main site db, others in phpBB db - with some more privileges fields), I'd use my own non-standard captcha like generating a distorted image "what is x+y" with x and y as random numbers and + may be replaced by other operations, or an image of "type the word ORANGE", or "type your username again"

I would disable the default phpBB registration... there are so many bots that know how to use it...

This would guarantee you have one source for the info, and you fill all the info at once.

Osama ALASSIRY  2009-03-02 12:11:01

related questions

What language do you use for Postgresql triggers and stored procedures?
Are Multiple DataContext classes ever appropriate?
Which tools do people use to create Data Dictionaries?
Any experiences with Protocol Buffers?
Mechanisms for tracking DB schema changes
How big can a MySQL database get before performance starts to degrade.
How do I index a database field
How does database indexing work?
How do I connect to a database and loop over a recordset in C#?
Editing database records by multiple users
Object Oriented vs Relational Databases
VFP .NET OLEdb provider does not work in Win 64-Bits. Help
Embedded Database for .net that can run off a network
Connect PHP to an AS/400
Swap unique indexed column values in database.
cx_Oracle - what is the best way to iterate over a result set?
cx_Oracle - How do I access Oracle from Python?
.NET Migrations Engine
Is there a version control system for database structure changes?
SQLite and XSD
How do I version my MS SQL database in SVN?
XSD DataSets and ignoring foreign keys
Flat File Databases in PHP
Throw Error In MySQL Trigger
Binary Data in MySQL