ZeroSuf3r
Reputation: 2001
user authentications via session or cookies?
This moment if user enter's correct username and password i just simply creating session:
$_SESSION['userid'] = $user_data[0]->id;
$_SESSION['username'] = $user_data[0]->username);
$_SESSION['loggedin'] = true;
After that, with $_SESSION['loggedin'] i can check if user can view part of website or not.
Is this method 'good/safe' ?
- Any benefit's using cookies based and session based authentication ?
- Which method most common site's using ?
- What you guys using for your sites ?
Upvotes: 0
Views: 192
Answers (2)
itachi
Reputation: 6393
If you are using any framework, then most framework comes with authentication library.
And for other purposes you can use phpseclib (a security library....). Its still in beta stage. I have tried it. Sounds promising.
Upvotes: 0
Kiwimoisi
Reputation: 4182
Have a look at this great answer from Joel Coehoorn on this page . Most of your questions are answered in this post.
Web authentication state - Session vs Cookie vs?
I hope this will help.
Cheers
Upvotes: 1
Related Questions
- Advantages/disadvantages of using cookies to store a user ID?
- Advantages of Sessions over Cookies in PHP
- Sessions or cookies?
- Should I use Both SESSION and COOKIE or Just COOKIE?
- Session or Cookie [PHP]
- (dis)advantages of sessions vs cookies
- User Login Session vs Cookie
- Use Session or Cookie for Login
- cookies vs sessions for php application
- php using sessions or cookies for user authorization