it350 web internet programming
play

IT350: Web & Internet Programming Set 16: Sessions Logging In - PDF document

May 18, 2023 •568 likes •627 views

IT350: Web & Internet Programming Set 16: Sessions Logging In Correctly 1 Logging In Correctly Unique session IDs identify your client No other client who has connected to the website should have the same ID With proper

  1. IT350: Web & Internet Programming Set 16: Sessions Logging In Correctly 1

  2. Logging In Correctly • Unique session IDs identify your client • No other client who has connected to the website should have the same ID • With proper encryption, nobody else knows your ID. Authentication • Get username/password from user • Check in file/db that correct combination – Never store plain text passwords • Hash • Salt • Iterate hashing • Set session variable • Later see if session variable is set – if yes, it means “authenticated” user 2

  3. Sessions in PHP - Create session_start() $_ SESSION[‘username‘] = ‘test’; Sessions in PHP – Read and Delete session_start(); if (isset ($_SESSION[‘username’])) $user = $_SESSION[‘username‘]; unset ($_SESSION[‘username’]; session_destroy(); 3

  4. Session management • Session token should be random – session_id() gives you the id of the session • Cookie – No expiration date set - so expires at end of browsing session – secure – only send over https – HttpOnly – cannot be accessed from JS Exercise Look at login.php and read.php on the calendar and mope. Edit your team’s login PHP to use sessions. If you don’t have a login yet, make it! 4

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

IT350 Web & Internet Programming Fall 2016 Introductions

IT350 Web & Internet Programming Fall 2016 Introductions

IT350 Web & Internet Programming Fall 2016 Introductions http://www.usna.edu/Users/cs/Adina/teaching/it350/fall2016/index.html 2 Outline Class Survey / Role Call What is: - the web/internet? - web programming? - this class?

343 views • 9 slides
IT350: Web & Internet Programming JavaScript Dynamic HTML CGI / PHP Set 12: CGI

IT350: Web & Internet Programming JavaScript Dynamic HTML CGI / PHP Set 12: CGI

Things well learn and do HTML5 basics, tables, forms Cascading Style Sheets IT350: Web & Internet Programming JavaScript Dynamic HTML CGI / PHP Set 12: CGI and PHP 1 Outline The Three-Tier Architecture

362 views • 18 slides
IT350 Web and Internet Programming SlideSet #12: CGI and Perl (some from online chapter:

IT350 Web and Internet Programming SlideSet #12: CGI and Perl (some from online chapter:

IT350 Web and Internet Programming SlideSet #12: CGI and Perl (some from online chapter: www.deitel.com/books/iw3htp4/ Things well learn and do XHTML basics, tables, forms, frames Cascading Style Sheets JavaScript

401 views • 8 slides
IT350 Web and Internet Programming SlideSet #12: CGI and Perl (some from online chapter:

IT350 Web and Internet Programming SlideSet #12: CGI and Perl (some from online chapter:

IT350 Web and Internet Programming SlideSet #12: CGI and Perl (some from online chapter: www.deitel.com/books/iw3htp4/ Things well learn and do XHTML basics, tables, forms, frames Cascading Style Sheets JavaScript Dynamic

498 views • 7 slides
IT350: Web & Internet Programming Set 7: Website Design 1 Principles: Web sites should be

IT350: Web & Internet Programming Set 7: Website Design 1 Principles: Web sites should be

Your Comments from Reading IT350: Web & Internet Programming Set 7: Website Design 1 Principles: Web sites should be How do you know if your site is good? User Testing and Evaluation A huge part of the HCI field.

510 views • 14 slides
IT350: Web & Internet Programming Set 4: CSS No Style Style! How do we get from here to

IT350: Web & Internet Programming Set 4: CSS No Style Style! How do we get from here to

IT350: Web & Internet Programming Set 4: CSS No Style Style! How do we get from here to there? 1 Cascading Style Sheets (CSS) example Key Questions Where can we specify style? How to select what parts of a page the style

692 views • 9 slides
IT350 Web and Internet Programming SlideSet #12: CGI and Perl Things well learn and do

IT350 Web and Internet Programming SlideSet #12: CGI and Perl Things well learn and do

IT350 Web and Internet Programming SlideSet #12: CGI and Perl Things well learn and do XHTML basics, tables, forms Cascading Style Sheets JavaScript Dynamic HTML CGI / Perl 1 CGI What does it all look like?

471 views • 7 slides
IT350: Web & Internet Programming Set 14: PHP Miscellaneous Outline Regular expressions

IT350: Web & Internet Programming Set 14: PHP Miscellaneous Outline Regular expressions

IT350: Web & Internet Programming Set 14: PHP Miscellaneous Outline Regular expressions More about arrays More about files 1 Regular Expression and Matching CGI receives lots of user input You need to match strings for

313 views • 10 slides
IT350: Web & Internet Programming Set 19: Security, Hacking and myspace Input to your

IT350: Web & Internet Programming Set 19: Security, Hacking and myspace Input to your

IT350: Web & Internet Programming Set 19: Security, Hacking and myspace Input to your Website How does a user input information to your site? How does your server-side code process the input? How do you store the input?

717 views • 12 slides
IT350 Web and Internet Programming SlideSet #18: HTTP Authentication

IT350 Web and Internet Programming SlideSet #18: HTTP Authentication

IT350 Web and Internet Programming SlideSet #18: HTTP Authentication http://www.httpwatch.com/httpgallery/authentication/ http://httpd.apache.org/docs/2.2/howto/auth.html Outline HTTP Basic Authentication HTTP Digest Authentication 1

349 views • 8 slides
IT350: Web & Internet Programming Set 11: Dynamic HTML What can we do with DHTML? 1 What

IT350: Web & Internet Programming Set 11: Dynamic HTML What can we do with DHTML? 1 What

IT350: Web & Internet Programming Set 11: Dynamic HTML What can we do with DHTML? 1 What can we do with DHTML? What techniques do we need? Find the HTML object we want to change var domLink =

334 views • 6 slides
IT350: Web & Internet Programming Fall 2015 Set 4: CSS No Style Style! How do we get from

IT350: Web & Internet Programming Fall 2015 Set 4: CSS No Style Style! How do we get from

IT350: Web & Internet Programming Fall 2015 Set 4: CSS No Style Style! How do we get from here to there? Cascading Style Sheets (CSS) example Key Questions Where can we specify style? How to select what parts of a page the

654 views • 17 slides
IT350 Web and Internet Programming Cookies: JavaScript and Perl (Some from Chapter 11.9 -4 th

IT350 Web and Internet Programming Cookies: JavaScript and Perl (Some from Chapter 11.9 -4 th

IT350 Web and Internet Programming Cookies: JavaScript and Perl (Some from Chapter 11.9 -4 th edition and online Perl Chapter of textbook) JavaScript: Using Cookies Cookie Data stored on _____________ to maintain information about client

342 views • 8 slides
IT350 Web and Internet Programming SlideSet #15: HTTP and Web Servers Chapter 21 and some from:

IT350 Web and Internet Programming SlideSet #15: HTTP and Web Servers Chapter 21 and some from:

IT350 Web and Internet Programming SlideSet #15: HTTP and Web Servers Chapter 21 and some from: http://www.garshol.priv.no/download/text/http-tut.html Client / Server Big Picture Client Server Language for these communications? 1 What does

367 views • 7 slides
IT350: Web & Internet Programming Fall 2015 Set 17: Security, Hackingand myspace Input to

IT350: Web & Internet Programming Fall 2015 Set 17: Security, Hackingand myspace Input to

IT350: Web & Internet Programming Fall 2015 Set 17: Security, Hackingand myspace Input to your Website How does a user input information to your site? How does your server-side code process the input? How do you store the input?

548 views • 23 slides
IT350: Web & Internet Programming Set 8: JavaScript JavaScript Intro Outline What is

IT350: Web & Internet Programming Set 8: JavaScript JavaScript Intro Outline What is

IT350: Web & Internet Programming Set 8: JavaScript JavaScript Intro Outline What is it good for? What does it look like? Is it Java? Example Usage var a = 1, b = 2, c = 3; var d = a + b * c;

537 views • 8 slides
NFS Version 4 Locking David Robinson robinson@Eng.Sun.Com 43rd IETF Orlando December 7-11,

NFS Version 4 Locking David Robinson robinson@Eng.Sun.Com 43rd IETF Orlando December 7-11,

NFS Version 4 Locking David Robinson robinson@Eng.Sun.Com 43rd IETF Orlando December 7-11, 1998 NFS Version 4 Working Group NFS Version 4 Locking 1 of 5 1998-12-04 Changes In Last Version OPEN Procedure Performs share file lock

229 views • 5 slides
t trs st t

t trs st t

A locking pattern Supporting images for a talk by Hari Bercovici Free probability and the N limit Berkeley, March 1916 t trs st t tr

501 views • 23 slides
Advances in Programming Languages APL19: Cautionary Tales in Concurrency David Aspinall (slides

Advances in Programming Languages APL19: Cautionary Tales in Concurrency David Aspinall (slides

Advances in Programming Languages APL19: Cautionary Tales in Concurrency David Aspinall (slides by Ian Stark) School of Informatics The University of Edinburgh Monday 16 March 2009 Semester 2 Week 10 N I V E U R S E I H T Y T O

1.06k views • 63 slides
Concurrency, 2PL, and 2PC Todays Topics Continue concurrency Review two-phase locking

Concurrency, 2PL, and 2PC Todays Topics Continue concurrency Review two-phase locking

Concurrency, 2PL, and 2PC Todays Topics Continue concurrency Review two-phase locking (2PL) 2PL with shared locks Deadlocks Timestamped concurrency Implementing distributed transactions Transaction manager

610 views • 19 slides
eduID business case TERENA REFEDS working group meeting CC450D002 1.0 - 1

eduID business case TERENA REFEDS working group meeting CC450D002 1.0 - 1

eduID business case TERENA REFEDS working group meeting CC450D002 1.0 - 1 www.curtiscartwright.co.uk Objective - a business case for eduID ? Persuasive and coherent argument to show a particular course of action is

328 views • 15 slides
Git Setup Help using GitKraken (CSE 154) Introduction: Git enables keeping track of different

Git Setup Help using GitKraken (CSE 154) Introduction: Git enables keeping track of different

Git Setup Help using GitKraken (CSE 154) Introduction: Git enables keeping track of different versions of files as we keep editing them. To make sure we understand git properly, here are some terms youll see being used quite often: 1.

342 views • 10 slides
CAPER and the eCon Planning Suite March 30, 2016 Webinar Instructions Presenters Chris

CAPER and the eCon Planning Suite March 30, 2016 Webinar Instructions Presenters Chris

CAPER and the eCon Planning Suite March 30, 2016 Webinar Instructions Presenters Chris Andrews, The Cloudburst Group Bill Kubal, Usona Development HUD Staff Beth Hendrix, OBGA Marlisa Grogan, SNAPS Webinar

865 views • 20 slides
02 SSH CS 2043: Unix Tools and Scripting, Spring 2019 [1] Matthew Milano January 25, 2019

02 SSH CS 2043: Unix Tools and Scripting, Spring 2019 [1] Matthew Milano January 25, 2019

02 SSH CS 2043: Unix Tools and Scripting, Spring 2019 [1] Matthew Milano January 25, 2019 Cornell University 1 Table of Contents 1. Working Remotely via SSH: Lab time! 2 Working Remotely via SSH: Lab time! Some Terminology 3 The

274 views • 10 slides

More recommend