Go4Expert

Go4Expert (http://www.go4expert.com/)
-   PHP (http://www.go4expert.com/forums/php/)
-   -   remember me option in login (http://www.go4expert.com/forums/remember-option-login-t20365/)

rekha 14Dec2009 16:34

remember me option in login
 
Hi,

I have used cookies to set remember me option while login.If cookies are set,I have used sessions to set the login.But it seems to be hackable.How can I use secure login with remember me option.

Pls suggest me a good solution.

shabbir 14Dec2009 17:42

Re: remember me option in login
 
Encrypt your value stored in the cookies

rekha 14Dec2009 18:01

Re: remember me option in login
 
Then how to implement the username and store it in sessions for login.

Thanks.

shabbir 14Dec2009 19:34

Re: remember me option in login
 
Encrypted.

rekha 15Dec2009 10:16

Re: remember me option in login
 
I understand that we have to encrypt the details and store it in cookies but I dont know how to reassign them when login.

shabbir 15Dec2009 12:48

Re: remember me option in login
 
Quote:

Originally Posted by rekha (Post 61706)
I understand that we have to encrypt the details and store it in cookies but I dont know how to reassign them when login.

No need to decrypt and compare both encrypted.

Say you have value X Which when encrypted becomes djakshdakjs

So now instead of converting djakshdakjs to X encrypt X and compare with djakshdakjs

learn3r 19Dec2009 11:39

Re: remember me option in login
 
I don't know how you said its hackable. Use sessions for logins and cookies just for remember me options. I don't think you want the user to get logged in directly rather you want his/her username/email to be displayed in the form if he chooses remember me options.


All times are GMT +5.5. The time now is 12:38.