News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

WebReference.com:
User Personalization with PHP User Login
April 01, 2009 @ 12:57:14

WebReference.com has posted the third part of their "user personalization" series today with a look at the gateway to your protected application - the login script.

This script does the very important job of authenticating a user and can make or break the application in the sense that if it is weak security wise, then any attacker can easily penetrate our application and cause damage. In this case, we will try to make it as difficult as possible for attackers to break our application.

Their script is a simple username/password form with some validation on the input - not empty, password is above a certain length and that the random number generated is the same as the one in the session. Only if it passes these is the user information checked via a database query. They also include a logout and user confirmation script that uses an md5 hash to validate the link.

0 comments voice your opinion now!
user login personalization login tutorial


blog comments powered by Disqus

Similar Posts

Michael Girouard's Blog: Pro Tip: Installing PHP 5.2.9 on CentOS

DevShed: Introducing the Composite Pattern in PHP 5

Paperbagcoder: MVC and PHP

Juozas Kaziukenas' Blog: Prevent scripts from being killed

C7Y Community Site: Handling Images with PHP


Community Events





Don't see your event here?
Let us know!


update release framework composer podcast opinion security community series symfony laravel introduction package library language interview voicesoftheelephpant mvc version tool

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework