Comments on: CakePHP User Auth http://www.alanblainewhitney.com/2008/03/15/cakephp-user-auth/ Web Development Wed, 07 Jan 2009 14:42:26 +0000 http://wordpress.org/?v=2.7 hourly 1 By: Alan Whitney http://www.alanblainewhitney.com/2008/03/15/cakephp-user-auth/comment-page-1/#comment-252 Alan Whitney Wed, 24 Sep 2008 13:26:26 +0000 http://www.alanblainewhitney.com/?p=29#comment-252 If you are using cake 1.2RC2, the manual is the only way to go. It's the only good way to do auth. http://manual.cakephp.org/view/172/Authentication If you are using cake 1.2RC2, the manual is the only way to go. It’s the only good way to do auth.

http://manual.cakephp.org/view/172/Authentication

]]> By: Manish Sanger http://www.alanblainewhitney.com/2008/03/15/cakephp-user-auth/comment-page-1/#comment-251 Manish Sanger Wed, 24 Sep 2008 12:48:03 +0000 http://www.alanblainewhitney.com/?p=29#comment-251 Hi tried this method using request handler, but it loads the login page in a updating div. Please help. Thanks in advance. Hi
tried this method using request handler, but it loads the login page in a updating div.
Please help.
Thanks in advance.

]]> By: Alan Whitney http://www.alanblainewhitney.com/2008/03/15/cakephp-user-auth/comment-page-1/#comment-10 Alan Whitney Mon, 31 Mar 2008 12:23:04 +0000 http://www.alanblainewhitney.com/?p=29#comment-10 thanks audru, that is a good idea. thanks audru, that is a good idea.

]]> By: andru http://www.alanblainewhitney.com/2008/03/15/cakephp-user-auth/comment-page-1/#comment-9 andru Mon, 31 Mar 2008 10:57:23 +0000 http://www.alanblainewhitney.com/?p=29#comment-9 Also for your validation, you could just make one method to check the uniqueness of a field, and pass the field name in as a parameter ;) Also for your validation, you could just make one method to check the uniqueness of a field, and pass the field name in as a parameter ;)

]]> By: Alan Whitney http://www.alanblainewhitney.com/2008/03/15/cakephp-user-auth/comment-page-1/#comment-4 Alan Whitney Mon, 17 Mar 2008 10:21:38 +0000 http://www.alanblainewhitney.com/?p=29#comment-4 Sorry for the no tabs. Just had a little problem with the wordpress editor. I am working on a better login redirect, to redirect to the page that they were trying to go to. I don't think it infinite loops (the code is in use), I only call checkSession on pages where login is required. Sorry for the no tabs. Just had a little problem with the wordpress editor. I am working on a better login redirect, to redirect to the page that they were trying to go to.

I don’t think it infinite loops (the code is in use), I only call checkSession on pages where login is required.

]]> By: hutchic http://www.alanblainewhitney.com/2008/03/15/cakephp-user-auth/comment-page-1/#comment-3 hutchic Mon, 17 Mar 2008 04:12:48 +0000 http://www.alanblainewhitney.com/?p=29#comment-3 I know I'm paranoid but I allways NULL out sensitive information before creating a session ie: $user['password'] = NULL; $this->Session->write('User', $user); but that's just my personal preference. I'd also suggest a way to set a redirect in the login functionality. In checksession if there is no user session and the action requested wasn't the login /logout action or any others that would infinite loop set a session variable called redirect. Then on login use that variable for $this->redirect .... also proper tabbing would make this more readable ;) I know I’m paranoid but I allways NULL out sensitive information before creating a session ie:

$user['password'] = NULL;
$this->Session->write(’User’, $user);

but that’s just my personal preference. I’d also suggest a way to set a redirect in the login functionality. In checksession if there is no user session and the action requested wasn’t the login /logout action or any others that would infinite loop set a session variable called redirect. Then on login use that variable for $this->redirect …. also proper tabbing would make this more readable ;)

]]>