Re: [Phplib-users] auth url question
Brought to you by:
nhruby,
richardarcher
Menu
▾
▴
Re: [Phplib-users] auth url question
|
From: Giancarlo <gia...@na...> - 2002-10-31 21:12:09
|
Il 15:23, gioved=EC 31 ottobre 2002, Rob Hutton ha scritto: > The more I think about this, the less I agree, because I think that aut= h > logic was/is flawed. But attached is a version that I think will drop = in. > > IMHO, auth should have a definite structure. It should not be somethin= g > where this and that gets tried until something happens to work. And in= the > case of registration, you could type an existing user name and password= and > get in. And that is not acceptable on a site that deals with credit ca= rds, > or business presentation, or a lot of things.=20 auth_validatelogin and auth_doregister are in userland local.inc. A regis= ter=20 form and a auth_doregister function is not even provided as an example.=20 Add an input field to the register form, eg=20 <input name=3Daction value=3Dregister> and test it in auth_doregister. Same for validating the login, add=20 <input name=3Dactio value=3Dlogin> in the loginform and test it in=20 auth_validatelogin. Otherwise we cannot simply call auth->start and pretend it will do, by=20 itself, any/everything needed. We'll need to call the three main start=20 functions separately, as auth->start(authenticate), auth->start(login),=20 auth->start(register). And this is definetely what I'd prefer. G =20 |
