 |
 |
 |
 |
|
|
Date: 02/09/00
- Next message: garyb <email protected>: "[PHPLIB] Login & form input"
- Previous message: hbljhb <email protected>: "[PHPLIB] {HOT CHICS OF THE CENTURY}"
- In reply to: Shawn Patton: "Re: [PHPLIB] Another username issue"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
That's wonderful!! and works beautifully.
Many thanks :)
Louise
> Hello,
>
> Your error was because you included the $ in $username:
> If $username equals "joe" then you've just registered variable $joe.
> The correct way would be:
> $sess->register("username");
> This should be changed in the docs.
>
> But on the other hand the above is incorrect for another reason.
> It is VERY insecure.
>
> As stated in the phplib manual , never register invalidated form
> data,( which username is).
>
> Instead register the username after it is validated. In the example
> classes in the distribution, the validated username is placed in
> $auth->auth["uname"].
>
> So you could register your user as follows:
>
> $current_user = $auth->auth["uname"];
> $sess->register("current_user");
>
> Shawn
-
PHP3 Base Library Mailing List. Send messages to <phplib <email protected>>.
To unsubscribe, send "unsubscribe" to <phplib-request <email protected>> in
the body, not the subject, of your message.
- Next message: garyb <email protected>: "[PHPLIB] Login & form input"
- Previous message: hbljhb <email protected>: "[PHPLIB] {HOT CHICS OF THE CENTURY}"
- In reply to: Shawn Patton: "Re: [PHPLIB] Another username issue"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]