tedd wrote:
James:
Hey tedd, thanks for the response!
1. A $_SESSION variable;
After googling briefly on the subject of sessions, it looks like this is
probably the way I'd want to go. I like this idea, because I can
modularize the code and call different php scripts for different
actions. I could have each script check for the proper session
variables, and if they don't exist, redirect the user to the login page.
I'm assuming that a session will last as long as the browser is open (or
until it's explicitly destroyed), correct? Are there any security
issues I should be aware of? Since there's a login, I'd be serving this
over SSL, and the user's password would be stored as an SHA1 hash in the
MySQL db.
James
--
My blog: http://www.crazydrclaw.com/
My homepage: http://james.colannino.org/
"When you do the common things in life in an uncommon way, you will
command the attention of the world." --George Washington Carver
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
