FUDforum
Fast Uncompromising Discussions. FUDforum will get your users talking.

Home » FUDforum » How To » Login box
Show: Today's Messages :: Polls :: Message Navigator
Switch to threaded view of this topic Create a new topic Submit Reply
Login box [message #26780] Thu, 11 August 2005 10:57 Go to next message
Duke is currently offline  Duke   Netherlands
Messages: 10
Registered: June 2005
Karma: 0
Junior Member
Hi Ilia,

Just wanted to ask what the login function does.
I had a look in the mysql db and the password looks like a salted md5 hash. Thing is I want to build a login box for the forum so I can use the login function elsewhere on the site.
So what happends actually on login? So I can rebuild it, I guess an salted md5 hash on password which returns a Session Cookie?

thank so much...
Re: Login box [message #26783 is a reply to message #26780] Thu, 11 August 2005 18:06 Go to previous messageGo to next message
Ilia is currently offline  Ilia   Canada
Messages: 13241
Registered: January 2002
Karma: 0
Senior Member
Administrator
Core Developer
The login function takes login and password (cleartext), it then tries to fetch a valid user id based on the combination of a supplied login and md5 hash of the password.
If a match is found the user's session is update (if possible) to mark them as logged in into found user account or a new session is created.


FUDforum Core Developer
Re: Login box [message #26784 is a reply to message #26783] Thu, 11 August 2005 18:54 Go to previous messageGo to next message
Duke is currently offline  Duke   Netherlands
Messages: 10
Registered: June 2005
Karma: 0
Junior Member
Thanks so much...

Do you know the variables used by head by any change? Especially of the $_SESSION['login'] ?
And the md5 hash is md5($_POST['password']) or is it salted?
Re: Login box [message #26786 is a reply to message #26784] Thu, 11 August 2005 19:43 Go to previous message
Ilia is currently offline  Ilia   Canada
Messages: 13241
Registered: January 2002
Karma: 0
Senior Member
Administrator
Core Developer
md5 hash is not salted, fudforum uses it's own session system, so $_SESSION super-global is not being used.

FUDforum Core Developer
  Switch to threaded view of this topic Create a new topic Submit Reply
Previous Topic: Error when updating templates - No source for date_formats.tmpl
Next Topic: using 'returnto' to redirect after a logout
Goto Forum:
  

-=] Back to Top [=-
[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Sun Nov 10 05:16:29 GMT 2024

Total time taken to generate the page: 0.01925 seconds