is the tutorial found at
viewtopic.php?t=24789
any good because i am relatively new to php and have not done any kind of login / secure type pages? i am trying to create a secure section on the site that is accessed via a username and password login. this section will allow employees to edit the content on the pages in the rest of the site(i can do this bit)
is the tutorial above ok to use for this or will i have to do a custom script?
also i am a little unsure about the purpose of a lot of security terms and php code, for instance i dont know what sessions are for, can anyone give me a link or any other source that will give me an overview on php security and the neccassary elements in a secure script or even the steps that should be included
ideally soemthing like the following:
step 1 - validate login and password characters
step 2 - check login and password are valid (check in db)
step 3 - create session
step ? - .......
step ? - .......
step x - logout
step xx - destroy session
just so i know what order these things need to be in and what has to be included in the script to provide a secure section on the site
also i want to be able to prevent the secure section being bookmarked or its address being copied into another borwser window and allowing access this way
also is the best way to add and delete users to have an administrator with these priviledges?
also (final question, i promise) is it possible to direct the users to different secure pages so that for instance all regular users are directed to the secure page that contains the content management system and for the administrator to go to another secure page that provides a content management system and the user account management system?
phew thats all
as you can see im a little bit lost with this kind of thing so any help any of you can give would be great
cheers
secure login and content management system
Moderator: General Moderators
-
rubberjohn
- Forum Contributor
- Posts: 193
- Joined: Fri Feb 25, 2005 4:03 am