prot4gonist Posted August 28, 2012 Share Posted August 28, 2012 Hi, I am trying to code a social site and need help with coding a registration script, login script, and members area. I am trying to design something simple that only requires a username, password, and email; something like the registration for this site. Quote Link to comment Share on other sites More sharing options...
xyph Posted August 28, 2012 Share Posted August 28, 2012 I'm not sure what you're asking for. The concept is pretty straightforward. Use sessions to track a user between requests. If the session has no record of a successful login stored within it, redirect users to a login page. For information on how to properly handle passwords with PHP and store/recall them with a database, check out the article in my signature. Quote Link to comment Share on other sites More sharing options...
happypete Posted September 3, 2012 Share Posted September 3, 2012 I recently tried the following script and think it may be exactly what your are looking for: http://www.firedartstudios.com/labs/tutis-login Quote Link to comment Share on other sites More sharing options...
prot4gonist Posted September 3, 2012 Author Share Posted September 3, 2012 I recently tried the following script and think it may be exactly what your are looking for: http://www.firedartstudios.com/labs/tutis-login this isnt what i had in mind, but it was still some help, thanks Quote Link to comment Share on other sites More sharing options...
Mahngiel Posted September 4, 2012 Share Posted September 4, 2012 registration & login processes need to be unique to an application and not found inside some copy / paste tutorial. Quote Link to comment Share on other sites More sharing options...
xyph Posted September 4, 2012 Share Posted September 4, 2012 registration & login processes need to be unique to an application and not found inside some copy / paste tutorial. There are great pre-built classes out there. Obscurity doesn't add security. That said, there's also a LOT of bad advice out there as well. Quote Link to comment Share on other sites More sharing options...
Mahngiel Posted September 4, 2012 Share Posted September 4, 2012 Obscurity doesn't add security. Sure most cars all start by turning a key, but what the car's computer does once the car is started is completely unique. What I'm saying is it's not about obscurity, it's about designing the process for one's application. There's a lot of stuff that can happen during the log-on process that an application uses. I don't think this is something resolved by using prebuilt-anything. Quote Link to comment Share on other sites More sharing options...
xyph Posted September 4, 2012 Share Posted September 4, 2012 Sure most cars all start by turning a key, but what the car's computer does once the car is started is completely unique. That's what /dev/urandom is for. Make your system cryptographically random, and each 'key' on any system becomes pretty unique. A key analogy is bad anyways. The dealership always has to be able to replicate any given key due to loss. You DON'T want this behaviour with a password Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.