	Login		Register

File: sample/login.php

Recommend this page to a friend!

Stumble It!

Bookmark in del.icio.us

	Classes of Vagharshak Tozalakyan	>	Secure Session	>	sample/login.php	>	Download

File:	`sample/login.php`
Role:	Example script
Content type:	`text/plain`
Description:	Sample
Class:	Secure Session Prevent session hijacking or session fixation
Author:	By Vagharshak Tozalakyan
Last change:
Date:	2005-12-28 12:17
Size:	`982 bytes`

Download


<?php

  session_start();

  require_once '../securesession.class.php';

  $error = '';

  if (isset($_POST['uname']))

  {

    $uname = $_POST['uname'];

    $passwd = $_POST['passwd'];

    if ($uname == 'User' && $passwd == 'password')

    {

      $ss = new SecureSession();

      $ss->check_browser = true;

      $ss->check_ip_blocks = 2;

      $ss->secure_word = 'SALT_';

      $ss->regenerate_id = true;

      $ss->Open();

      $_SESSION['logged_in'] = true;

      header('Location: index.php');

      die();

    }

    else

    {

      $error = 'Incorrect username or password.';

    }

  }

?>



<html>

<head>

<title>SecureSession Sample</title>

</head>

<body>

<?php

  if (!empty($error))

  {

    echo $error;

  }

?>

<form method="post" action="<?php echo $_SERVER['PHP_SELF']; ?>">

Username: <input type="text" name="uname" />

Password: <input type="password" name="passwd" />

<input type="submit" value="Log In" />

</form>

</body>

</html>

Advertise on this site

For more information send a message to info at phpclasses dot org.

File: sample/login.php

Contents