making a register/login/ system is harder than it sounds (in my opinion anyway);
here is a very basic register/login/members only/ PHP script i made. it does not need any installation, and does not run sql
(live working demo:
www.hanshenrik.tk/my_login_test )
locked.php (aka "members only")
PHP Code:
<?php
if(session_id()==='')
{
session_start();
}
if(!(isset($_SESSION['status']) && $_SESSION['status'] == "logged_in"))
{
die("sorry, you must be logged in to view this page");
} else {
?>
//place content here.
//this place is only visible to registered & logged in members
<?php
}
?>
userlist.inc.php:
PHP Code:
<?php
//this file stores the $userarray array...
//instead of a sqldb...
$userarray=array();
$userarray['admin']='password';
//$userarray['YWRtaW4=']='cGFzc3dvcmQ=';
?>
users.inc.php:
PHP Code:
<?php
require('userlist.inc.php');
function registerNewUser($username,$password)
{
global $userarray;
if(!ctype_alnum($username) or !ctype_alnum($password))
{
die("sorry, only alphanumeric letters allowed. (a-z,A-Z,0-9)");
}
if(isset($userarray[$username]))
{
die("sorry, name is taken.");
return false;
}
$username=addslashes($username);
$password=addslashes($password);
$addstring='<?php $userarray[\''.$username.'\']=\''.$password.'\';?>';
file_put_contents('userlist.inc.php',$addstring,FILE_APPEND);
return true;//new user registered...
}
?>
register.php:
PHP Code:
<?php
require("users.inc.php");
if(session_id()==='')
{
session_start();
}
if(isset($_GET['register_username']) && isset($_GET['register_password']))
{
if(empty($_GET['register_password']))
{
die("error: you must have a password");
}
if(empty($_GET['register_username']))
{
die("error: you must have a username");
}
registerNewUser($_GET['register_username'],$_GET['register_password']);
echo 'you are now registered. <a href="login.php">login at the login page</a>';
die('');
} else {
?>
here you can register
<form name="input" action="register.php" method="get">
Username: <input type="text" name="register_username" /><br/>
Password: <input type="password" name="register_password" /><br/>
<input type="submit" value="Submit" />
</form>
<br/><small>only alphanumeric letters allowed. (a-z,A-Z,0-9)</small>
<?php
}
?>
login.php:
PHP Code:
<?php
if(session_id()==='')
{
session_start();
}
require("users.inc.php");
if(isset($_GET['username_login']) && isset($_GET['password_login']))
{
$username=$_GET['username_login'];
$password=$_GET['password_login'];
if(!empty($username) && !empty($password))
{
global $userarray;
if(isset($userarray[$username]) && //we know its a real username
$userarray[$username]==$password)
{
//Correct username and password.
//Finally logged in
$_SESSION['status']='logged_in';
$_SESSION['username']=$username;
echo '<a href="locked.php">you can enter members area now...</a>';
die('congrats! you are now logged in as '.$_SESSION['username']);
} else{
die("error: wrong username or password."); }
} else { die("error: empty username or password");}
} else {
?>
here you can login
<form name="input" action="login.php" method="get">
Username: <input type="text" name="username_login" /><br/>
Password: <input type="password" name="password_login" /><br/>
<input type="submit" value="Submit" />
</form>
<?php
}
?>
basic register/login/members only/ script -
10-31-2011, 02:13 PM
Linear Mode
