Comments on: Secure PHP login without database

By: Lil

Lil — Wed, 23 Jun 2010 03:19:50 +0000

Very useful, thank you.

By: Rich

Rich — Tue, 08 Jun 2010 15:22:21 +0000

Hi, sorry for asking a basic question, but is it possible to redirect the users depending on their username to different webpages? Where is it set where the page redirects?

thanks

Rich

By: Jerry Low

Jerry Low — Sun, 30 May 2010 11:09:05 +0000

Hey Chris, sessions usually close/terminate by themselves after a short period when the browser closes. I believe if you're using tabs and you close one tab the session resides. I could be wrong.

That being said, its not quite possible to do so through PHP as PHP is a server side coding and when the browser is terminated the browser doesn't communicate with the server. So you may have to look into a javascript alternative if you need a full termination of cookies/sessions right at the moment of closing.

-Jerry

By: Chris

Chris — Fri, 28 May 2010 13:16:45 +0000

Hello Everyone,

I'm new to this site, however I've worked out the non-database PHP script.

However, it would be nice if someone could tell me where and what line of code I should add so the session would terminate itself (logout) upon closing the browser window.

Help from anyone is appreciated.
Thank you in advanced.

Chris

By: Kamil

Kamil — Sun, 21 Mar 2010 08:57:37 +0000

thx;)

By: Jerry Low

Jerry Low — Thu, 18 Mar 2010 18:09:11 +0000

Kamil the script relies on the PHP header(); function to redirect you after you logged in.

Now the function only works if nothing has been outputted to you browser yet. PHP script will run on the server and won't output anything to the browser unless you have an echo "; script. So you can't have anything like echo "; before my script.

Or if you included my script after the , or tag it also won't work. It has to be before that.

Now if you do need to output something before the script then you need to use Javascript for the redirect.

By: Kamil

Kamil — Thu, 18 Mar 2010 17:44:58 +0000

Do you know what is wrong??? And what is solution this problem? Thx;)

Warning: Cannot modify header information – headers already sent by (output started at /data/www/silentman/w/_login_users.php:1) in /data/www/silentman/w/_login_class.php on line 43

Warning: Cannot modify header information – headers already sent by (output started at /data/www/silentman/w/_login_users.php:1) in /data/www/silentman/w/_login_class.php on line 44

Warning: Cannot modify header information – headers already sent by (output started at /data/www/silentman/w/_login_users.php:1) in /data/www/silentman/w/login.php on line 5

By: Olive

Olive — Tue, 09 Mar 2010 02:28:08 +0000

Thank you Jerry. This is really great.

By: Jerry Low

Jerry Low — Mon, 08 Mar 2010 17:42:54 +0000

Hey Olive,

1. The $domain code is actually just a unique naming code for your cookies. You just need to put any name. It could be Olive, code, random, or anything you like. It doesn't affect the pages and operation much.

2. These files are all currently linked together as being in the same directory. They don't have to be in the root but they have to be in the same folder. You can move them around but you'll have to change the file pointing to them.

3. You can link to the login from sub directories or have the login in a sub directory and link back. You'll have to change the path to the files though such as the login and logout php pages.

Hope that helps!

By: Olive

Olive — Mon, 08 Mar 2010 09:07:07 +0000

Hi,

Thank you very much for the code.

I have some few questions to ask as below :

1. $domain_code = 'website'; Should I have to put the url of the page which I want member to login before they can redirect to protected page, right? (in easy word, I mean the page that contain login form)

2. Do these code need to be in root folder?

3. Is it possible if I would like these codes along with my other protected php pages located together in sub directory? Do I need to change any code inside?

Thank you for your kind reply.