Page 1 of 1
Manage Sessions with Database.
Posted: Tue Apr 01, 2008 12:04 am
by tecktalkcm0391
I was googling this can couldn't find a tutorial that showed how to throughly do this, without a bunch of security holes. (i.e. mysql_query($_POST['sql']);
Re: Manage Sessions with Database.
Posted: Tue Apr 01, 2008 12:44 am
by Christopher
There are lots of these around. There are even examples in the manual:
http://www.php.net/manual/en/function.s ... andler.php
Re: Manage Sessions with Database.
Posted: Fri Apr 04, 2008 11:55 pm
by tecktalkcm0391
I think I got something working for this, but is there a way to make it so that it checks that a user (that is part of a system) is not logged in already, and deny if the user is logged in already....
cause they way I have it is AppCompanyLicense = 12345... user = Chris could be an account and AppCompanyLicense = 54321... user = Chris ---- so the same username could be used, but it depends on the License.
or do you think I should change that if it makes a security hole in anyway I don't see
Re: Manage Sessions with Database.
Posted: Tue Apr 08, 2008 1:38 am
by lafever
The one arborint showed and Chris Shiflett has a tutorial also on it.
http://shiflett.org/articles/storing-se ... a-database