homepage Welcome to WebmasterWorld Guest from 54.234.128.25
register, free tools, login, search, pro membership, help, library, announcements, recent posts, open posts,
Pubcon Platinum Sponsor 2014
Home / Forums Index / Code, Content, and Presentation / PHP Server Side Scripting
Forum Library, Charter, Moderators: coopster & jatar k

PHP Server Side Scripting Forum

    
managing usernames sitewide with php
figuring out a way to control users on multiple applications
punisa




msg:3559478
 9:46 am on Jan 28, 2008 (gmt 0)

Hello,

I have several application on my site which include integrated Blog (Wordpress multi user) and Forum (phpbb 3). Both have great user login and administration options.
Beside these I have my own (homemade) CMS system which also allows users to register and by doing so post comments on articles or even send their own articles (depending on access level assigned).

I believe you already see my problem : ) I have (up till now) 3 different register/login options on a single site. This looks very bad and annoying. Luckily my whole websites is still in the testing phase (not online).

My header.php with login form (my own, homemade) is included sitwide, this includes blog and forum.

I'm in need of serious advice from you guys, especially if you had similar situations. I have moderate knowledge of PHP any mysql (mostly PHPmyadmin)

I noticed when I check users tables in database that both (PHPbb and Wordpress) create scrambled(hashed?) passwords. When I created my login form this was not the case.

To summarize: what would be the best practice to control all users and allow them single-sitewide login/registration option?

Thank you very much, if you need more info please ask, I'll be glad to explain everything in more detail as needed.

p.s. I believe this problem/solution resides in the domain of PHP serverside, if I'm mistaken please move the post to the appropriate subforum.

 

Mohamed




msg:3559501
 10:16 am on Jan 28, 2008 (gmt 0)

it is not easy task but it can be done. I don't use phpBB and wordpress so I don't know how they structure their user tables.

hack wordpess login system so that wordpress will query phpBB user table during login and logout process. registration process should only happen in phpBB. means remove other registration scripts. finally it is bad practice not to hash passwords because it can easily be compromised.

jatar_k




msg:3559699
 2:21 pm on Jan 28, 2008 (gmt 0)

Welcome to WebmasterWorld punisa,

as for the "hashed passwords", the odds are it is just done using MD5 [php.net]. You could take a look at this for some info on user management [webmasterworld.com].

as far as hacking them together

I would pick one of the systems as the 'main' one and then make all others work with it.

I would also shy away from using your own login/user mgmnt system when both of the packages mentioned can probably do it better.

You'll have to go through a chunk of queries and look at the session and what info each package needs among many other things.

Global Options:
 top home search open messages active posts  
 

Home / Forums Index / Code, Content, and Presentation / PHP Server Side Scripting
rss feed

All trademarks and copyrights held by respective owners. Member comments are owned by the poster.
Home ¦ Free Tools ¦ Terms of Service ¦ Privacy Policy ¦ Report Problem ¦ About ¦ Library ¦ Newsletter
WebmasterWorld is a Developer Shed Community owned by Jim Boykin.
© Webmaster World 1996-2014 all rights reserved