Building a site with a secure user id and password, this is my first time doing this. How do I get the password and user id to verify the names to access the site? Would I need to have this hooked to a database? Where can I ge more information on this? Thanks ?
@buntineMay 11.2005 — #The most common way is to use a database to store the name and password of authorized users. When a user attempts to sign in, you grab the entered data and construct an SQL that checks whether any corresponding records exist.
Where you look for more precise documentation depends on which languages and database you are going to be using or and limited to.
@lbowenMay 11.2005 — #If your server is Linux, you can use HTTP Authentication. Do a google search to find tons of information. What is your platform and what software is installed on it?
@buntineMay 11.2005 — #.NET also offers several authentication methods. Including forms authentication, windows authentication (HTTP), and one other (whose name has escaped me).
@ray326May 12.2005 — #Heavens, I'd never want to disagree with Buntine ? but "the most common way" is to use Basic Authentication against a password file.
@Stephen_PhilbinMay 12.2005 — #You'd be suprised how much the implementation of a login system can change depending on the requirements. The main two things we'd need to know to be able to give you any decent kind of help i:
1) What type of host are you on? Windows or Unix/Linux?
2) Do you want a user based system where everyone has their own role and level of access or do you just want to protect an area from unauthorized people, but people who do have authorization all have the same level of access?
The answers to those two questions will have the biggest influence over what would be the best solution in each case.