sessions and authentication

sessions and authentication

El Forum
Guest

02-15-2008, 05:24 AM

[eluser]wiredesignz[/eluser]
It should be optional.

logged in should be db session IP based, and user auth should be user_id cookie based.

pull the user unique_id from their account into a cookie and store their IP + id into a session db.

if someone else logins in they get the unique_id but the session IP fails to match.

if the genuine user leaves and comes back they still have the cookie and the session IP matches

Messages In This Thread

sessions and authentication - by El Forum - 02-13-2008, 09:51 AM

sessions and authentication - by El Forum - 02-14-2008, 04:50 AM

sessions and authentication - by El Forum - 02-15-2008, 02:10 AM

sessions and authentication - by El Forum - 02-15-2008, 02:29 AM

sessions and authentication - by El Forum - 02-15-2008, 04:20 AM

sessions and authentication - by El Forum - 02-15-2008, 05:11 AM

sessions and authentication - by El Forum - 02-15-2008, 05:14 AM

sessions and authentication - by El Forum - 02-15-2008, 05:18 AM

sessions and authentication - by El Forum - 02-15-2008, 05:24 AM

sessions and authentication - by El Forum - 02-15-2008, 05:52 AM

sessions and authentication - by El Forum - 02-15-2008, 06:16 AM

sessions and authentication - by El Forum - 02-15-2008, 06:36 AM

sessions and authentication - by El Forum - 02-15-2008, 06:39 AM