User login using cookies pls...

[BlimpQuick]

Can some one help me do that? I need to create a User Login that uses cookies (obviously php for those who are new) . I'm learning Php and after all the tutorials i got i just got more confused. Lol. Thanks for future help.

[Scott]

<?
$username="BlimpQuick";
$password="123abc";

If($_POST['submit']) {

If($_POST['username']=="$username" AND $_POST['password']=="$password") {
setcookie("loggedin","Yes",time());
} Else {
echo"loggin failed";
}

}
?>


<form method="POST" action="<?=$_SERVER['PHP_SELF'];?>">
Username: <input type="text" name="username"><br />
Password: <input type="password" name="password"><br />
<input type="submit" name="submit" value=" Login ">
</form>

[BlimpQuick]

thx panther, i was actually about to post at ur site and ask the same question , but u answered it here ! Ur pretty smart.

[atholon]

He learns crap fast. He'd be a good asset if he did this for a corperation

[BlimpQuick]

lol heck ya

[SilentTrigger]

Very limiting though, would be better to use a database with thatr script.

[BlimpQuick]

cool , how would i program a data base? That will b some hard work...I'll go read some tutorials.

[SilentTrigger]

www.php.net search for mysql (need it installed on server), be sure to search in function list.

[BlimpQuick]

huh...okay m8...but wut panther told me could be useful for Administration ... right? anyways how would I make a page only allow people with certain cookies to access them? Is there a way? I'm new to this but like I said before, the tutorials I recieve so far have confused me more. Thanks for future help

[SilentTrigger]

Quote:

Originally posted by BlimpQuick
huh...okay m8...but wut panther told me could be useful for Administration ... right? anyways how would I make a page only allow people with certain cookies to access them? Is there a way? I'm new to this but like I said before, the tutorials I recieve so far have confused me more. Thanks for future help

Its indeed a very good script and that might be a very good for administration. It just hard if you get many members to have to write all in to the script file. Other then that theres no need for a database
And yes that is possible, one way is to store md5 hashes in the cookie thats compared to the hash in the Database, if its a match they are granted access, if not they get a message asking them to login. Md5 is a encryption that very secure
Only bad thing when using Md5 is that it cant be decrypted, not that i know of atleast.

go to www.webmonkey.com for tutorials on mysql and php.

http://hotwired.lycos.com/webmonkey/...tutorial4.html

[King]

Never write usernames and passwords in your code. Use a database

[SilentTrigger]

Quote:

Originally posted by King*NI*
Never write usernames and passwords in your code. Use a database

It doesnt really matter, you could MD5 the user and pass and there would be no problem.

[King]

But then you dont write:

$username="BlimpQuick";
$password="123abc";

But something like":
$sql='SELECT userID FROM users WHERE username="'.$_POST['username'].'" AND password="'.md5($_POST['password']).'"';

[SilentTrigger]

Quote:

Originally posted by King*NI*
But then you dont write:

$username="BlimpQuick";
$password="123abc";

But something like":
$sql='SELECT userID FROM users WHERE username="'.$_POST['username'].'" AND password="'.md5($_POST['password']).'"';

Thats using a database, im talking not using a database but using a md5 hash.

$username="md5hash"; //md5 hash that coresponds to the username
$password="md5hash"; //md5 hash that cresponds to the password

Then you have a form to write in the username and password which is md5'ed and compared to the username hash and password hash above. If its the same on both, your logedin. If not, you're not logged in

[King]

But then the md5 hash is in your code. easy to hack.
Got a nice tool for it which can get the right username & pass.

But if you cant use a database... ok, then its a sollution. But i wouldnt use it though.