Easier might be just to set up an htpasswd file with Apache, and
maintaining the ACLs within the PHP scripts themselves. Unless you
absolutely need a user database, of course.
Also, PHP has the $_SESSION global variable, which, if I remember, you
can just set/unset things within the hash, and it maintains the
correct cookies and such to maintain the session. Once you have that,
the only piece you need to implement is the password verification,
which consists of "If authorized, start session, else, clear session."
Then again, I messed up my cookie based authorization mechanism last
time I tried to do it mself, so yeah, I might not be the best person
to listen to about it.
On Fri, Apr 24, 2009 at 3:58 PM, Christopher Howard <choward@indicium.us> wrote:
> I posted a question at a forum, and was hoping one or two of you might have some tips:
> http://www.linuxquestions.org/questions/programming-9/phpmysql-foss-for-managing-user-sessions-on-the-web-721505/
>
> --
> Christopher Howard
> http://indicium.us
> http://theologia.indicium.us
>
> -- Attached file included as plaintext by Ecartis --
> -- File: signature.asc
> -- Desc: Digital signature
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (GNU/Linux)
>
> iEYEARECAAYFAknyUiwACgkQQ5FLNdi0BcV5cACfXXnBie0NvU7vGKNzTsVLIeHY
> wWcAnjlATMtPm133XD6gwHoQKnOmdXJS
> =YMb5
> -----END PGP SIGNATURE-----
>
>
> ---------
> To unsubscribe, send email to <aklug-request@aklug.org>
> with 'unsubscribe' in the message body.
>
>
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Fri Apr 24 16:34:04 2009
This archive was generated by hypermail 2.1.8 : Fri Apr 24 2009 - 16:34:04 AKDT