how to implement a login system under php?
Are there any good tutorials on how to create your own registration, authentications using php/mysql/or javascript. ...
login
Exit status code for Expect script called from Bash
I made a Bash script which uses an expect script to automate ssh logins.The script connects to multiple servers and runs some commands. The bash script prompts for login credentials once. I want to incorporate a feature wherein the script terminates if the login fails for the first server to avoid the script checking for next servers re...
What are the pros and cons of using an email as a username?
You know most login forms use user & pass. And some go the email & pass. What are the pros and cons of them? Here is what I have thought of. PROS of email one less thing to remember (as opposed to remembering a username too) Should always be unique per user One less thing you need to ask them to register CONS If they change email...
Password reset by emailing temporary passwords
A group in my company is implementing a single-sign-on REST API for our applications. This authentication service has a password reset function. The application sends the username to the reset function. If that username is associated with an email address, then an email is sent to that address with a temporary password. The other app...
$_SESSION difficulties
I am creating a login script that stores the value of a variable called $userid to $_SESSION["userid"] then redirects the user back to the main page (a side question is how to send them back where they were?). However, when I get back to that page, I am echoing the session_id() and the value of $_SESSION["userid"] and only the session i...
Secure a "thanks" page against non-logged in users
When a person registers on my site, or logs in, they are sent to "thanks.php". The page checks is you're logged in or not and if so, tells you what you can do and if not, gives you a link to the register.php page. However, anyone can make their own cookie and trick the script like that. How do I protect myself from this? One thing I ...
Login control in MVC not displaying username after account creation redirect.
I'm working with a custom asp.net membership provider in conjunction with the default Account controller that comes with the asp.net MVC example app. Everything is going smoothly except for one tiny thing: After a user creates an account and is automatically logged in and redirected, their username is not displayed with the usual welcome...
Session login vs HTTP authentication. Advantages Disadvantages
I noticed a few big sites use HTTP authentication. Im wondering what the main difference is between this and session based logins are. Any advantages or disadvantages. Any explanation and or suggestions would be helpful as i'm trying to decide which login to use for my site. thanks ...
How to create a Global Accounts system to use across several apps?
I'm developing several apps at the moment which will require a global accounts system across all of the apps and I'm unsure of what's the best way of going about doing this. The most obvious option is to have each app connect to 1 database but that would require duplicating the MVC login code across all the apps which would make updatin...
[Zend Framework] Redirecting user back to originally desired URL after login
Example: User is not logged in User has items in their shopping cart User goes to /checkout User is redirected to the /login page User logs in successfully and should be redirected back to the /checkout page How does the login action know to redirect the user to checkout in this case? I want this to work in many different situation...
Can my user log in and show their reputation?
Hi there guys and gals. We just started a new hosted wordpress blog. And since we have a log in system, we wondered if we could tie in a reputation system with it. We aren't that much into technical wizzardry... so any help will be appreciated! ...
Postgresql does not prompt for password
I have a postgresql 8.3 db set up on linux box, together with a user postgres The pg_hba.conf reads local all postgres ident sameuser local all all md5 so no trusted connections from local machine. Yet when connecting via commandline with psql, no password is...
PHP Class for logins
I am looking for a good class for logins. I don't need a login or registration form. Just the behind the scenes stuff mostly. Looking for recommendations. ...
How can I add my application in loginwindow.plist Programatically in MAcOs
I want my application to run as soon as user login. For this I need the modify the /Library/Preferences/loginwindow.plist. Manually I can do this using Plist Editor but I want to do this in my code. How can I do this Programatically using C/C++ ...
Joomla 1.5 one install - multiple virtual hosts: can I unite logins?
I've set up multiple virtual hosts that all lead to the same Joomla 1.5 installation (e.g. host1.mysite.com, host2.mysite.com, etc). Seems that when a user logins to one of the virtual hosts then moves to another he needs to re-login. The cookies/sessions are saved for each host separately. Is there anyway that I can unite the logins? ...
No login error text for role based authentication in ASP.NET
I have an ASP.NET Role/Membership based forms authentication site. There's a subfolder and its pages which can be accessed only by a certain role. The problem is, login page does not display any error message if any user from non-allowed role group logins in login page. I mean, when a user from AllowedRole logins, the login page redirect...
SQL server : Login issue while querying
I have a web application running with a SQL server 2005 DB as back end.I took the db back of the production site and restored in my development machine.Then i tried to query this database using the login "sa".When trying to execute the "select * from Customers" query, i am getting a message like "Invalid object name 'Customers" But when ...
Automatic logged out
I have a php page from where my users log-in to the application. It is working fine. Yesterday, all of a sudden the users were able to login but were forced out and redirected to the login page again. My database has logged in the user's login timings and this problem was automatically solved after about 2 hours. Why will like this hap...
Why is https only used for login?
Is performance the only issue? Can't an https connection be used throughout a user's session? There is obviously less redirection happening! I found this related question on http vs. https performance Edit: Ok, I didn't mean 'used only for login'. Rather, what I'm trying to ask is if you come to a point where you need https anywhere on...
Secure login with proper authentication in PHP
How do I write/put together a secure login in PHP? The website developer guide said I shouldn't roll my own, so referring to samples available via Google is useless. How do you pros do it? Lets say you're building a world-class app in rails, would the same libraries / techniques be usable here? Thanks ...