I need help with a userDB with login sys

Anon

I need help or at least a good tutorial for making a good USER DB for large corp sites with a login and logout system. Fairly basic really but I need a good push in the right direction! 🙂

spacemax

whats your problem exactly? Give me a detailed expl. im online in 8h again for about 12h till then i have to sleep..

Anon

Well I don't really know where to start...I have a to make a large userDB where people can sign up, and then the next time login, and alternativetly choose to use cookies so they don't need to login. How would I go about creating this? Any tutorials or examples I can look at?

spacemax

http://www.phpwelt.de/

there are a lot of samples and code snippets, but try to do it yourselfe, its a good experiance if you have built your own loginsys 😉

what you will need is a table for the userdata. lets call it user

id name login password cookie

the fields ar defined as
id int unsigned index primary unique autoincrement not null
name varchar 50
login varchar 50
password varchar 50
cookie smalint 2

now you set up a form where the user can fill in login and password. if he submits the form you check it against the db and if this user exists, you welcome him with he's name.

sounds simple 😉

function for checking the login:

<?
if ($action=="login"){
mysql_connect (hostname', 'username', 'password' );
mysql_select_db (dbname);
$query="select * from user where (login='$login') and (password='$password')";
$result = mysql_query ($query);
if (($result)AND($row = mysql_fetch_array($result))) {
//do the action for logedin user
}
}
?>

form:

<form action="" method="post">
<table cellspacing="2" cellpadding="2" border="0">
<tr>
<td>Name</td>
<td><input type="text" name="login"></td>
</tr>
<tr>
<td>Password</td>
<td><input type="password" name="password"></td>
</tr>
</table>
<input type="hidden" name="action" value="login">
<input type="submit" name="send" value="Send">
</form>

now pasted together (not tested)

<?
if ($action=="login"){
$username=""; //set the initial value of username
mysql_connect (hostname', 'username', 'password' );
mysql_select_db (dbname);
$query="select * from user where (login='$login') and (password='$password')";
$result = mysql_query ($query);
if (($result)AND($row = mysql_fetch_array($result))) {
$username=$row["name"];
}
}
?>

<head>
</head>
<body>
<?
if($username=""){
?>
<form action="login.php" method="post">
<table cellspacing="2" cellpadding="2" border="0">
<tr>
<td>Name</td>
<td><input type="text" name="login"></td>
</tr>
<tr>
<td>Password</td>
<td><input type="password" name="password"></td>
</tr>
</table>
<input type="hidden" name="action" value="login">
<input type="submit" name="send" value="Send">
</form>
<?}else{?>
Welcome <?=$username?>
<?}?>
</body>

for this system you will need a mysql DB set up and running

have fun..

Anon

Thx mate!!

Anon

Thats all well and good but how wud i do it so that i cud have multiple protected pages, that check that the user is logged in?????

Thanks :o)

Luke

spacemax

if you save the username in a session variable you can check this on each page and if not exists, redirect to a non protected page.

Anon

Thanks, but how?