Call me stupid, but I just made my first PHP/MySQL script. Woohoo!
Sorry, to get to the point...
I am an incredible genius, but could someone possibly show me how Session IDs work? Here's more information about my query...
This is a description of my PHP script:
It allows you to input information that passes through a PHP file, gets added to the MySQL.
It then shows all MySQL entries (in an organized fashion) on another PHP page.
The MySQL also has an 'auto_increment' id field.
If you go to mydomain.com/update.php?id=1 you can update the information (obviously of the entry id 1).
I was hoping someone could tell me how to secure this.
What I want is a link on another PHP file that links to update.php but with a completely random ever-changing session ID so that only this certain person viewing it can actually "update" their SQL entry.
Any suggestions? I would've done this in another forum, like support, but I don't need a quick answer, just when someone has time.
News for Everyone!!!
Moderator: General Moderators
a suggestion would be to hardcode a password into your script, and provide a form to input the password, then check if it is correct. That is only if one, or two, people need to access this page.
Another way would be to store login credentials in a database, and dynamically check the password for the logged in user and provide a password box for them, then check to see if the password provided matches the username for that password.
If it's going to be a multi user system, logins will be needed (a database as well). If it's going to be a single user system, a hardcoded password would work fine.
Another way would be to store login credentials in a database, and dynamically check the password for the logged in user and provide a password box for them, then check to see if the password provided matches the username for that password.
If it's going to be a multi user system, logins will be needed (a database as well). If it's going to be a single user system, a hardcoded password would work fine.
Set Search Time - A google chrome extension. When you search only results from the past year (or set time period) are displayed. Helps tremendously when using new technologies to avoid outdated results.
Re: News for Everyone!!!
Wow an incredible genious...?lupus2k5 wrote:I am an incredible genius
But wouldn't that result in having the password in the URL? I'd like to have something encrypted first, but I don't know how that works. Is it maybe performing a mathematical operation to encrypt the password to a seemingly random number?scrotaye wrote:a suggestion would be to hardcode a password into your script, and provide a form to input the password, then check if it is correct. That is only if one, or two, people need to access this page.
Another way would be to store login credentials in a database, and dynamically check the password for the logged in user and provide a password box for them, then check to see if the password provided matches the username for that password.
If it's going to be a multi user system, logins will be needed (a database as well). If it's going to be a single user system, a hardcoded password would work fine.