[eluser]jcjc[/eluser]
Hi,
I've built my own login script - for learning purposes. It's using sha1 and a salt to encrypt user passwords etc. However I'm currently using session() to use as a query factor to get user account info (profile view/edit etc) is this secure?
thanks
