Interpreting "Running Membership with Sessions"

Codewalkers Forums Sponsor:

AT&T devCentral & BlackBerry(r) Webcast Series: BlackBerry and GPS -Build Location Awareness into your BlackBerry Applications, July 10th-1:00PM EST. Register Today!

November 24th, 2006, 04:03 AM

Anonymous

Registered User

Codewalkers God 35th Plane (22000 - 22499 posts)

Join Date: Apr 2007

Posts: 22,309

Time spent in forums: < 1 sec
Reputation Power: 24

Interpreting "Running Membership with Sessions"

Hello there. I was reading through Hermawan's "Using Sessions in PHP" tutorial with interest in creating a somewhat secure authentication system for an admin control panel I'll be writing for a site. However, being a relative noob to php and mysql, I find it hard to understand what parts of the code mean. So I was wondering if someone could help me by explaining important parts and possibly giving me examples of sql queries that are needed to complete the code. Thanks.

Here's the code Hermawan provides:

php Code:

Original - php Code

<?php
// functions.php
 
function secure () {
  if (!($_SESSION["member_id"]) || ($_SESSION["member_id"] == "")) {
    Header("Location: ./login.php");
    exit();
  }
}
function login_check ($forms) {
  $error = "";
  $username = $forms["username"];
  $password = $forms["password"];
  if (trim($username) == "") $error .= "<li>Your username is empty.</li>";
  if (trim($password) == "") $error .= "<li>Your password is empty.</li>";
  /* from here, do your sql query to query the database to search for existing record with correct username and password */
  if (trim($error)!="") return $error;
}
 
function login ($forms) {
  $username = $forms["username"];
  $password = $forms["password"];
  /* do your sql query again, but now returning the id of member */
  return $member_id;
}
?>

php Code:

Original - php Code

<?php
// login.php
session_start();
include ("functions.php");
if ($_POST) {
  $error = login_check($_POST);
  if (trim($error)=="") {
    $_SESSION["member_id"] = login($_POST);
    Header("Location: ./index.php") // Redirect correct member
    exit();
  } else {
    print "Error:$error";
  }
}
?>
<form method="post">
Username : <input type="text" name="username"><br />
Password : <input type="password" name="password"><br />
<input type="submit" value="Login">
</form>

php Code:

Original - php Code
<?php // index.php include("functions.php"); session_start(); secure(); ?>

<?php
  // index.php
  include("functions.php");
  session_start();
  secure();
?>

Viewing: Codewalkers Forums > Other > Tutorials > Interpreting "Running Membership with Sessions"

« Previous Thread | Next Thread »

Thread Tools	Search this Thread
Email this Page	Search this Thread: Advanced Search
Display Modes	Rate This Thread
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode	Rate This Thread:

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts vB code is On Smilies are On [IMG] code is On HTML code is Off

View Your Warnings | New Posts | Latest News | Latest Threads | Shoutbox

Forum Jump