Securing documents

Anon

I would like to build an administration section on my site, but am a little worried about the security. I want to be able to have users login using a login page, and not an .htaccess dialog, but am not sure how to do it. I assume that I would use cookies, otherwise, I am at a loss. Can anyone help me?

tre_harmon

Yes you could use cookies to handle the post authentication navigation handling for visitors. In addition you can use sessions that can offer the capability to store the visit information on the host server, in either session files (typically put in /tmp)
or the DB of your choice.

Ultimately, the session functions in PHP can all also be replicated by creating your own custom session handling. For more information on PHP Session handling functions, please visit: http://php.net/manual/en/ref.session.php

tre
http://piclabs.com

Anon

I agree with tre. Probably there is another solution that I am using.

I used tempory database and cookie to store user's information. Every time auth users login, the tempory database can issue them random and unique ID.

I am not using sessions. The one thing I don't like sessions is each session you create is stored in the file on the server.

Hope it could be helpful.

Angela

saltwater

yup, sessions are the way to go :o)
once your understand them, they are very simple, but you first have to understand them... :-/

:o))