Эхлэл Бүгдийг харах Тусламж
Нэвтрэх
Banana
/
dolphin
1
0
Салаа 0
Файлууд Асуудлууд 0 Хуулах хүсэлтүүд 0
Салаа: master
Салаанууд Тагууд
dolphin
/
authentication
/
session-based.php

session-based.php 2.5 KB
Байнгын холболт Түүх Анхны өгөгдөл

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  *  dolphin. Collection of useful PHP skeletons.
    5. 

  5.  *  Copyright (C) 2012  Johannes 'Banana' Keßler
    6. 

  6.  *
    7. 

  7.  * This program is free software: you can redistribute it and/or modify
    8. 

  8.  * it under the terms of the COMMON DEVELOPMENT AND DISTRIBUTION LICENSE
    9. 

  9.  *
    10. 

  10.  * You should have received a copy of the
    11. 

  11.  * COMMON DEVELOPMENT AND DISTRIBUTION LICENSE (CDDL) Version 1.0
    12. 

  12.  * along with this program.  If not, see http://www.sun.com/cddl/cddl.html
    13. 

  13.  */
    14. 

  14. 

  15. /**
    16. 

  16.  * simple session based user auth
    17. 

  17.  * There is no security check against enything. 
    18. 

  18.  * Use this only as an example and not productive
    19. 

  19.  */
    20. 

  20. 

  21. # session
    22. 

  22. define('SESSION_LIFETIME',28800); # default is 28800 => 8 hours
    23. 

  23. define('SESSION_NAME','TheSessionName');
    24. 

  24. 

  25. define('AUTH_USER','the user name');
    26. 

  26. define('AUTH_PASS','the password');
    27. 

  27. define('AUTH_KEY','the special key');
    28. 

  28. 

  29. session_set_cookie_params(SESSION_LIFETIME);
    30. 

  30. session_name(SESSION_NAME);
    31. 

  31. session_start();
    32. 

  32. session_regenerate_id(true);
    33. 

  33. 

  34. $needsLogin = true;
    35. 

  35. 

  36. if(isset($_GET['do']) && $_GET['do'] == "logout") {
    37. 

  37. 	# clear session info
    38. 

  38. 	session_destroy();
    39. 

  39. 	$_COOKIE = array();
    40. 

  40. 	$_SESSION = array();
    41. 

  41. 	
    42. 

  42. 	# "reload" the page
    43. 

  43. 	header("Location: ./session-based.php"); # rename to the correct file!
    44. 

  44. }
    45. 

  45. elseif(isset($_SESSION[SESSION_NAME]['someKey']) && $_SESSION[SESSION_NAME]['someKey'] === AUTH_KEY) {
    46. 

  46. 	$needsLogin = false;
    47. 

  47. }
    48. 

  48. 

  49. # process the login form
    50. 

  50. if(isset($_POST['doLogIn'])) {
    51. 

  51. 	if(isset($_POST['username']) && isset($_POST['password'])) {
    52. 

  52. 		$username = trim($_POST['username']);
    53. 

  53. 		$password = trim($_POST['password']);
    54. 

  54. 

  55. 		if(!empty($username) && $username === AUTH_USER
    56. 

  56. 			&& !empty($password) && $password === AUTH_PASS) {
    57. 

  57. 					
    58. 

  58. 				# register the session
    59. 

  59. 				$_SESSION[SESSION_NAME]['someKey'] = AUTH_KEY;
    60. 

  60. 				$needsLogin = false;
    61. 

  61. 				
    62. 

  62. 				# "reload" the page
    63. 

  63. 				header('Location: session-based.php'); # rename to the correct file!
    64. 

  64. 			}
    65. 

  65. 	}
    66. 

  66. }
    67. 

  67. 

  68. header('Content-type: text/html; charset=UTF-8');
    69. 

  69. ?>
    70. 

  70. <html>
    71. 

  71. 	<head>
    72. 

  72. 		<title>SESSION based user auth</title>
    73. 

  73. 		<meta charset='utf-8' />
    74. 

  74. 	</head>
    75. 

  75. 	<body>
    76. 

  76. 	<h1>Simple $_SESSION based auth method</h1>
    77. 

  77. 	<?php if($needsLogin === true) { ?>
    78. 

  78. 		<h2>Login form</h2>
    79. 

  79. 		<form method="post" action="">
    80. 

  80. 			<label>Username</label>
    81. 

  81. 			<input type="text" name="username" value="" />
    82. 

  82. 			<br />
    83. 

  83. 			<br />
    84. 

  84. 			<label>Password</label>
    85. 

  85. 			<input type="password" name="password" value="" /><br />
    86. 

  86. 			<br />
    87. 

  87. 			<button type="submit" name="doLogIn" title="Login">LogIn</button>
    88. 

  88. 		</form>
    89. 

  89. 	<?php }	else { ?>
    90. 

  90. 		<p>You are logged in.</p>
    91. 

  91. 		<p><a href='?do=logout'>Do you want to logout ?</a></p>
    92. 

  92. 	<?php } ?>
    93. 

  93. 	</body>
    94. 

  94. </html>	
    95. 

  95. 	
    96.