Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/linx05/php-planeador-online

Last synced: 7 days ago
JSON representation

Host: GitHub
URL: https://github.com/linx05/php-planeador-online
Owner: linx05
Created: 2016-10-25T18:31:32.000Z (about 8 years ago)
Default Branch: master
Last Pushed: 2016-10-25T18:46:53.000Z (about 8 years ago)
Last Synced: 2024-11-07T18:32:39.722Z (about 2 months ago)
Language: PHP
Size: 291 KB
Stars: 0
Watchers: 2
Forks: 0
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        PHP-Login

=========

A simple, secure login and signup system with PHP, MySQL and jQuery (AJAX) using Bootstrap 3 for the form design as well as PHP-Mailer for user account verification and confirmation



## Installation

### Clone the Repository (recursively to include PHP-Mailer submodule)

    $ git clone --recursive https://github.com/fethica/PHP-Login.git

### Creating the MySQL Database

Create database "login" and create tables "members" and "loginAttempts" :

```sql

CREATE TABLE `members` (

  `id` char(23) NOT NULL,

  `username` varchar(65) NOT NULL DEFAULT '',

  `password` varchar(65) NOT NULL DEFAULT '',

  `email` varchar(65) NOT NULL,

  `verified` tinyint(1) NOT NULL DEFAULT '0',

  `mod_timestamp` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,

  PRIMARY KEY (`id`),

  UNIQUE KEY `username_UNIQUE` (`username`),

  UNIQUE KEY `id_UNIQUE` (`id`),

  UNIQUE KEY `email_UNIQUE` (`email`)

) ENGINE=InnoDB DEFAULT CHARSET=utf8;

CREATE TABLE `loginAttempts` (

  `IP` varchar(20) NOT NULL,

  `Attempts` int(11) NOT NULL,

  `LastLogin` datetime NOT NULL,

  `Username` varchar(65) DEFAULT NULL,

  `ID` int(11) NOT NULL AUTO_INCREMENT,

  PRIMARY KEY (`ID`)

) ENGINE=InnoDB DEFAULT CHARSET=utf8;

```

### Setup the `login/dbconf.php` file

```php

Read code comments for a description of each variable

```php

'.$signin_url.'';

    //IGNORE CODE BELOW THIS

```

### Place this code (from `index.php`) at the head of each page :

> *** **Important** *** Checks to see if username $_SESSION variable is set. If not set, redirects to login page. 

```php

```

### Check the Username and the Password using jQuery (Ajax) :

If the user has the right username and password, then the `checklogin.php` will send 'true', register the username and the password in a session, and redirect to `index.php`.

If the username and/or the password are wrong the `checklogin.php` will send "Wrong Username or Password".

###Signup/Login Workflow:

> 1) Create new user using `signup.php` form

> (note: validation occurs both client and server side)

>     Validation requires: 

>        - Passwords to match and be at least 4 characters

>        - Valid email address

>        - Unique username

> 2) Password gets hashed and new GUID is generated for User ID

> 3) User gets added to database as unverified

> 4) Email is sent to user email (or $admin_email if set) with verification link

> 5) User (or admin) clicks verification link which sends them to `verifyuser.php` and verifies user in the database

> 6) Verified user may now log in