Wiki articles tagged with "authentication"

Showing 21-25 of 25 items.

Simple RBAC

Created 12 years ago by hasanavi, updated 11 years ago by Stageline.

If you need simple Role based access control without the long RBAC process then this article is just for you. Lets jump to the point.

33 1
43 followers
Viewed: 118 883 times
Version: 1.1
Category: Tutorials

JWT authentication tutorial

Created 2 years ago by Allan Jensen, updated 2 years ago by Allan Jensen.

JWT is short for JSON Web Token. It is used eg. instead of sessions to maintain a login in a browser that is talking to an API - since browser sessions are vulnerable to CSRF security issues. JWT is also less complicated than setting up an OAuth authentication mechanism.

13 0
8 followers
Viewed: 152 086 times
Version: 2.0
Category: Tutorials

Use crypt() for password storage

Created 11 years ago by fsb, updated 9 years ago by fsb.

Update: This wiki has been rewritten to be in line with Yii 1.1.14. Since many of the detailed complexities are now handled by Yii, the article focuses on how the crypt() built-in function works and why it's important to use it correctly.

15 0
20 followers
Viewed: 177 372 times
Version: 1.1
Category: Tutorials

How to add more information to Yii::app()->user

Created 15 years ago by qiang, updated 11 years ago by Yang He.

By default, the expression Yii::app()->user returns a [CWebUser] [application component](http://www.yiiframework.com/doc/guide/basics.application#application-component) which represents the information that are closely related with the current user. Some information can be persistent throughout the current user session. For example, [CWebUser] already comes with a [name|CWebUser::name] property th...

21 0
28 followers
Viewed: 226 950 times
Version: 1.1
Category: Tutorials

How to write secure Yii1 applications

Created 12 years ago by François Gannaz, updated 3 years ago by François Gannaz.
  • Validate the user input (see below for details).
  • Protect (escape) your application output according to context (see below for a few output types, mostly HTML and SQL).
  • Test your application in debug mode.
    Set the constant YII_DEBUG to true (by default, it is defined in index.php) and put alongside error_reporting(E_ALL);. Then errors and warnings will stop the execution an...
80 0
114 followers
Viewed: 311 478 times
Version: 1.1
Category: How-tos