LinkBack URL
About LinkBacks
Reply With Quote.htpasswd
htpasswd htaccess - Google Search
Hi All
I need to secure a directory against unauthorised access using php. It's going to be an online admin area for my database, there won't be any really important info like sensitive financial data so I won't need SSL. I would like as straightforward a technique as possible, it is only going to be me that will be accessing it.
Thanks for any suggestions.
.htpasswd
htpasswd htaccess - Google Search
David Macfarlane
Cost effective web development. Codewise
As D-Mac said, .htaccess is a great solution, but some hosts don't allow it.
With PHP, you would need an index.php file in the directory with a form for the user to fill in their username and password (called "username" and "password") and a log in button. I also put a hidden field with a name of "action" and a value of "login".
Make the form post back to itself (ie the same page as the form is on), and add the following to the first line of the page, above the HTML:
If the username and password are correct (hard coded in the example above, but normaly pulled from a database), then it will put the username in a session variable called "user" and then redirect to "protected_page.php".PHP Code:if($_POST['action'] == "login"){
if($_POST['username'] == "myusername" && $_POST['password'] == "mypassword"){
$_SESSION['user'] = $_POST['username'];
header("Location: protected_page.php";
}
}
On each page that you want to protect, add the following to the top of each page at line 1 (again above the html).
This checks for the prescence of the user session variable, and only allows the user to view the page if the session variable is set (meaning the user has logged in) otherwise they are redirected to the index page to login.PHP Code:if(strlen($_SESSION['user']) < 1){
header("Location: index.php");
}
Simple to setup, but does work.
Thanks for your replies D-Mac and tbp, much appreciated.
There are currently 1 users browsing this thread. (0 members and 1 guests)
Posting Permissions
Bookmarks