 |
 |
 |
 |
|
|
Date: 08/04/01
- Next message: Tarique Sani
- Previous message: Kristian Koehntopp: "Re: [phplib] Session ID randomness/security ?"
- Next in thread: Tarique Sani
- Reply: Tarique Sani
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
I always had some little problems with default authentication, and have
collected a few workarounds for them.
Is anyone actively using it?
What type of problems did you encounter?
For me the biggest problem is the capability, for user 'nobody', to
store any user data
eg:
$user->register("whatever")
This causes all sort of problem, because every 'nobody' online is
sharing the same 'user' record in active_sessions all the time, and
apart from race conditions, you must be always careful not to make
anythig persistent while you are nobody, but rather use the 'session'
persistance instead.
I would just take away any capability to register 'user' data to the
'nobodys'.
And I would like to refine default_authentication a little, so if anyone
uses this feature I'd like to hear from you
Giancarlo
-- Abbestellen mit Mail an: phplib-unsubscribe <email protected> Kommandoliste mit Mail an: phplib-help <email protected>
- Next message: Tarique Sani
- Previous message: Kristian Koehntopp: "Re: [phplib] Session ID randomness/security ?"
- Next in thread: Tarique Sani
- Reply: Tarique Sani
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]