Reply to need help with user authentication routine — PHP Programming Language

Posted by walterbyrd on 04/13/06 01:30

I am trying to develop a simple user authentication routine.

I started with something I got from a book called "PHP in Easy Steps."
It works like this:

- create a table in a database with basic user information: name,
login, password
- create a simple html form which loads "authenticate.php" when the
submit button is pushed.
- autheticate.php checks the login against the database, and loads the
next file, if the user is authenticated.

I have all that working. The problem, if you haven't guessed, is that
somebody can bypass the entire thing, if that person the the file(s)
that are loaded after the authetication. i.e.

http://urlname/sensitivedata.html

So how do I fix this? Cookies? Can I check if the user is authenticated
in each subsequent file that might be loaded?

[Back to original message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация