How to add simple user auth. with php form
Brought to you by:
nileshd
Menu
▾
▴
Is it a simple way to add user authorization (only login and pass) to pages generated with genie?
I mean simple form with login and pass fields connected to login/pass function used to connect to database.
Maybe someone could send me examples (I use firebird server in my projects, but any database will do)
PS Sorry for my English...
Greetings,
Martin
From what I can see, you could certainly add one or more tables to your database, then regenerate.
However, I think it would require manually adding code to each routine that you want to protect.
There is a very nice example that I've used and it could be emulated if you choose to go the manual add-on route.
The package I refer to is vAuthenticate by Vincent Ong. See: http://www.beanbug.net/vScripts.php and download vAuthenticate-3.x.
Set up a separate instance of a database and just learn how to make it work.
What you'd be looking to emulate is how it uses a combination of userID and the group to which the user belongs to consider whether or not to even SHOW that a routine exists. And if you do it right, even if a hacker knows a routine exists, the controls that Vincent demonstrates will usually be adequate for disallowing execution.
One caveat: phpCodeGenie is intelligent with regard to various databases. vAuthenticate is strictly MySQL although I have been successful in converting it to ADODB.
If you grasp the concepts in the native format, it shouldn't be all that difficult to "roll your own" version as an after-market add-on to a phpCodeGenie generated package.
HTH.
Dave Nuttall
San Antonio, Texas