Wiki articles tagged with "authentication"

Showing 21-25 of 25 items.

How to add more information to Yii::app()->user

Created 15 years ago by qiang, updated 11 years ago by Yang He.

By default, the expression Yii::app()->user returns a [CWebUser] [application component]( which represents the information that are closely related with the current user. Some information can be persistent throughout the current user session. For example, [CWebUser] already comes with a [name|CWebUser::name] property th...

21 0
Viewed: 226 952 times
Version: 1.1
Category: Tutorials

Simple RBAC

Created 12 years ago by hasanavi, updated 11 years ago by Stageline.

If you need simple Role based access control without the long RBAC process then this article is just for you. Lets jump to the point.

33 1
Viewed: 118 883 times
Version: 1.1
Category: Tutorials

Authenticating against phpass hashes with Yii

Created 12 years ago by Da:Sourcerer, updated 9 years ago by Da:Sourcerer.
  • iteration_count_log2 controls the number of iterations for key stretching. A setting of 8 means the hash algorithm will be applied 2^8 = 256 times. This setting should be kept between 4 and 31.
  • portable_hashes controls whether portable hashes should be used or not. Portable hashes are salted MD5 hashes prefixed by $P$.
22 0
Viewed: 39 376 times
Version: 1.1
Category: How-tos

Implementing a User Level Access System

Created 13 years ago by Antonio Ramirez, updated 10 years ago by Phil Loaiza.

Please note that this article is a simple example and good security should be taken into account when we play with authentication systems.

27 0
Viewed: 70 654 times
Version: 1.1
Category: Tutorials

How to write secure Yii1 applications

Created 12 years ago by François Gannaz, updated 3 years ago by François Gannaz.
  • Validate the user input (see below for details).
  • Protect (escape) your application output according to context (see below for a few output types, mostly HTML and SQL).
  • Test your application in debug mode.
    Set the constant YII_DEBUG to true (by default, it is defined in index.php) and put alongside error_reporting(E_ALL);. Then errors and warnings will stop the execution an...
80 0
Viewed: 311 478 times
Version: 1.1
Category: How-tos