share ONE members table for all php apps

DASHee

hi,
i have a invision board, and several other php apps on my site, like Chat, personal profiles, email etc.

i want use Invision Board's MEMBER TABLE for all the logins in my site.

example:
(suppose)
you have registred in the BOARD, now you can also login with that (board's) user name and password into EMAIL, CHAT and etc.

i hope you got my point, please help

Pig

There's no easy answer. You will have to hack each individual program for every reference to that table. You cannot just change table names either, since each app might have differently named columns or different fields altogether. Also, there could be refernce to columns in any page of the app that would have to be changed as well. All-in-all, it is a major pain in the butt.

werkkrew

I would say it wouldnt be too hard...

just look at the table structure for the invision members table in a nice script like phpMyAdmin, then if the password is encrypted, which im sure it is, look through the source of the script where an account is created and look at how the password is encoded, which is more then likely md5...it should be really quite simple actually.

DASHee

can you explain step by step?
since i know only basics of mysql and php.

can you try it to your own Board, email and chat, and then let me see how you did it?

thanx

werkkrew

If you only know the basics, then you might be able to do it yet.

Its not hard to do.

Browse the table of members and take note of how the password looks, if it looks like "password" youre ok, if it looks like "5thYTyhsst45yw4y7wiai8t4ag-13tawgagd" then its encrypted.

Then look through the code for the board, namely the script that creats a user account, and thus encrypts the password

look for a line similar to this

$enc_pass = md5($password);

that would mean they used md5 encryption, which is about a 99% possibility they did..

so in scripts you write.

have a form that asks for a username and a password

do the same thing to the password they enter, in this case,

$enc_pass = md5($password);

then check their username and the encoded password against the inivison board member table, and if it exists, youre good to go...

Maybe you can even just streal the boards login script completely and use it wherever you need to

you wont get me to write an entire script for you