|
-
May 13th, 2008, 04:20 AM
#1
Thread Starter
Hyperactive Member
store user loginname and password
When user login with a username and password, how to store the username and password so that when the user is redirected to another page, the username and password can be used as the key reference to load the relevant info from database?
-
May 13th, 2008, 05:47 AM
#2
Frenzied Member
Re: store user loginname and password
Sounds like you would like to use Session variables.
-
May 13th, 2008, 09:46 AM
#3
Re: store user loginname and password
First off, make sure the password is hashed. You shouldn't be able to get it manually from the database or decrypt it.
Secondly, once a user logs in you would typically set a session variable with the username and/or id in it. From there subsequent pages would take that session variable and correlate data from the database.
-
May 13th, 2008, 03:00 PM
#4
Re: store user loginname and password
Don't store the password in a session variable for 'reauthenticating' everytime he accesses a new page. Once the user is authenticated, all you need is a token of some sort as illustrated in post #3. Having that token is proof that the user is logged in.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|
Reply With Quote
