Wiki articles tagged with "authentication"

Showing 1-20 of 22 items.
Created 4 years ago by hemc, updated 4 years ago by CeBe.

How-To: Create Token Authenticated Web Services

This article is about implementing authentication to Yii based web services.

4 0
16 followers
Viewed: 29 328 times
Version: 1.1
Category: How-tos
Created 4 years ago by Kostas Apazidis (KonApaz), updated 4 years ago by Kostas Apazidis (KonApaz).

Make the authentication more securely

Suppose a hacker has an account of your website He could set the PHPSESSID to empty After of that He login in your system The PHPSESSID remains blank and user has already logged with this session

2 0
4 followers
Viewed: 8 704 times
Version: 1.1
Category: Tutorials
Created 9 years ago by qiang, updated 6 years ago by Yang He.

How to add more information to Yii::app()->user

By default, the expression Yii::app()->user returns a [CWebUser] [application component](http://www.yiiframework.com/doc/guide/basics.application#application-component) which represents the information that are closely related with the current user. Some information can be persistent throughout the current user session. For example, [CWebUser] already comes with a [name|CWebUser::name] property th...

21 0
28 followers
Viewed: 191 114 times
Version: 1.1
Category: Tutorials
Created 9 years ago by lucifurious, updated 8 years ago by wei.

How to use markItUp! on a text field for full WYSIWYG editing

This tutorial will show you how to use the Pogostick Yii Extension Library to make an HTML TEXTAREA input element into a full-fledged WYSIWYG editor pretty much with very little code.

3 0
3 followers
Viewed: 28 216 times
Version: 1.1
Category: Tutorials
Created 4 years ago by le_top, updated 4 years ago by CeBe.

HOW TO: Use token based authentication

After reading the other wiki article regarding token based access, I thought that it might be interesting to share my method.

2 0
9 followers
Viewed: 27 754 times
Version: 1.1
Category: How-tos
Created 5 years ago by seenivasan, updated 5 years ago by seenivasan.

Yet another implementation of CPhpAuthManager.

In this wiki, I try to implement a simple authorization schema without putting much logic inside a file or into database table. We are constructing authorization hierarchy inside the controller. We are getting roles for the current user from database table and assigning only roles to user that are declared in the particular controller. We have brought down the work of loading of auth data at ma...

5 1
7 followers
Viewed: 13 998 times
Version: 1.1
Category: How-tos
Created 8 years ago by Juan Calvo, updated 7 years ago by Juan Calvo.

Introducción al control de acceso basado en roles (RBAC)

Todos los que hemos empezado a utilizar Yii para crear aplicaciones Web, nos hemos dado de bruces cuando hemos intentado poner a funcionar el RBAC (acceso de control basado en roles).

15 1
9 followers
Viewed: 59 894 times
Version: 1.1
Category: Tutorials
Created 9 years ago by pestaa, updated 6 years ago by Yang He.

Adding login form to each page

After adding proper form to the main layout, like:

3 1
7 followers
Viewed: 39 912 times
Version: 1.1
Category: Tutorials
Created 8 years ago by thyseus, updated 8 years ago by Orteko.

Installing and configuring the Yii User Management Module under a fresh skeleton application generated by yiic

p.s. latest version of this tutorial is always available unter the docs/ folder of the User Management Module.

12 2
15 followers
Viewed: 76 603 times
Version: 1.1
Category: Tutorials
Created 8 years ago by suriyansuresh, updated 8 years ago by suriyansuresh.

Module based login

If you want to add module based login to a site without using RBAC, please follow these guidelines.

13 0
18 followers
Viewed: 61 415 times
Version: 1.1
Category: Tutorials
Created 6 years ago by zitter, updated 6 years ago by zitter.

Show captcha after <N> unsuccessfull attempts

In this mini howto I would like to show how to add a required captcha field in the login form, after a defined number of unsuccessfull attempts. To do this, I will use the blog demo that you have in default Yii download package (path/to/yii/demos/blog).

13 4
17 followers
Viewed: 25 298 times
Version: 1.1
Category: How-tos
Created 5 years ago by biz dev, updated 5 years ago by biz dev.

Integrating HybridAuth directly into Yii without an extension

This article tries to explain the steps required in integrating the HybridAuth into Yii directly, without using an extension.

10 0
16 followers
Viewed: 43 477 times
Version: 1.1
Category: How-tos
Created 7 years ago by Antonio Ramirez, updated 4 years ago by Phil Loaiza.

Implementing a User Level Access System

Please note that this article is a simple example and good security should be taken into account when we play with authentication systems.

27 0
37 followers
Viewed: 56 971 times
Version: 1.1
Category: Tutorials
Created 5 years ago by Rajith R, updated 4 years ago by Rajith R.

Yii User and Rights Implementation

implementing some features of yii user and rights.

3 0
9 followers
Viewed: 30 004 times
Version: 1.1
Category: How-tos
Created 8 years ago by BeerSerc, updated 5 years ago by Navarr.

How to use ldap in UserIdentity for authentication

Yii does not have an LDAP class itself, but its very easy to implement LDAP in the stock UserIdentity class.

11 0
18 followers
Viewed: 58 134 times
Version: 1.1
Category: Tutorials
Created 6 years ago by fsb, updated 4 years ago by fsb.

Use crypt() for password storage

Update: This wiki has been rewritten to be in line with Yii 1.1.14. Since many of the detailed complexities are now handled by Yii, the article focuses on how the crypt() built-in function works and why it's important to use it correctly.

15 0
22 followers
Viewed: 106 817 times
Version: 1.1
Category: Tutorials
Created 8 years ago by bettor, updated 6 years ago by Stageline.

How to setup RBAC with a php file

In this cookbook I will attempt to explain how to use the lightweight version of Role-Based Access Control using a php file. This version does not use database but a php file and is controlled by CPhpAuthManager class.

24 4
21 followers
Viewed: 70 595 times
Version: 1.1
Category: How-tos
Created 6 years ago by hasanavi, updated 6 years ago by Stageline.

Simple RBAC

If you need simple Role based access control without the long RBAC process then this article is just for you. Lets jump to the point.

33 1
43 followers
Viewed: 98 920 times
Version: 1.1
Category: Tutorials
Created 7 years ago by Da:Sourcerer, updated 4 years ago by Da:Sourcerer.

Authenticating against phpass hashes with Yii

  • iteration_count_log2 controls the number of iterations for key stretching. A setting of 8 means the hash algorithm will be applied 2^8 = 256 times. This setting should be kept between 4 and 31.
  • portable_hashes controls whether portable hashes should be used or not. Portable hashes are salted MD5 hashes prefixed by $P$.
22 0
28 followers
Viewed: 31 054 times
Version: 1.1
Category: How-tos
Created 7 years ago by François Gannaz, updated 5 years ago by François Gannaz.

How to write secure Yii applications

  • Validate the user input (see below for details).
  • Protect (escape) your application output according to context (see below for a few output types, mostly HTML and SQL).
  • Test your application in debug mode.
    Set the constant YII_DEBUG to true (by default, it is defined in index.php) and put alongside error_reporting(E_ALL);. Then errors and warnings will stop the execution an...
80 0
117 followers
Viewed: 257 863 times
Version: 1.1
Category: How-tos