I need a PHP class for professional login system: Create a professional login system
| Recommend this page to a friend! |
All requests  |
> | I need a PHP class for professional l... | > | Request new recommendation | > |  Featured requests |
> |  No recommendations |
I need a PHP class for professional login system #professional login system
by Søren Haugaard Listel - 9 years ago (2015-07-22)
Create a professional login system
  +9 | I need to create a high security login system. |
- 2 Clarification requests
8.
by bala - 3 years ago (2022-05-19) Replyhi
1.
by Manuel Lemos - 9 years ago (2015-07-28) ReplyWhat aspects do you require to consider a package a good professional secure login system?
2.
by Dave Smith - 9 years ago (2015-08-04) in reply to comment 1 by Manuel Lemos CommentThe latest trend I have noticed with the banking industry to use 2FA MFA
What you know...
1) Unpublished user name
2) Password containing at least 8 characters with at least one capitalized alpha character and one numeric character.
What you have
1) Encrypted authentication token in the form of a secure cookie stored on authorized computers.
Whenever access is attempted by a computer without the token, an additional security layer is implemented where the user must have a security token sent to their mobile phone on record or answer a series of questions from public records about themselves. On success the computer is registered as authentic.
I have also started seeing e-mail notifications being sent to the e-mail account on record whenever the account is logged onto.
I haven't seen any classes that currently implement more than 1FA MFA, so this may be a candidate for a featured request.
3.
by Manuel Lemos - 9 years ago (2015-08-04) in reply to comment 2 by Dave Smith CommentYes, you are right, that would be great if it existed.
Anyway, I wonder if the original poster requires something that sophisticated.
There are many reasonably secure packages but without more specific requirements it is hard to figure.
4.
by Dave Smith - 9 years ago (2015-08-04) in reply to comment 3 by Manuel Lemos CommentHe did request 'high security' which I would define as a minimum of 2 factor authentication.
5.
by Manuel Lemos - 9 years ago (2015-08-04) in reply to comment 4 by Dave Smith CommentI agree with you, but I wonder if is familiar with the concept.
In any case, he can read your excellent article on PHP multi-factor authentication so he may help clarifying the level of security he means.
6.
by Manny Hernandez - 9 years ago (2015-08-16) in reply to comment 3 by Manuel Lemos Comment"Yes, you are right, that would be great if it existed."
barebonescms.com/documentation/sso/
It's not exactly a class so much as a complete sign in system. The generic login provider has a couple of 2FA options built-in. The level of complexity of 2FA is always going to be more than a single PHP class should ever attempt to handle.
7.
by Kaaalid Marzog - 9 years ago (2015-09-23) in reply to comment 2 by Dave Smith Comment
4 Recommendations
PHP Secure Login Library: Login users and start sessions in a MySQL database
It can can start logged user sessions with records stored in a MySQL database accessed using MySQLi.
The package scripts can perform other operations to manage user accounts like registering users, verify the user email address, recover lost user passwords, login and logout users.
multiOTP PHP class: Authenticate and manage OTP strong user tokens
It can create, update and delete tokens to authenticate users with one time passwords (OTP). The users data is stored in files.
The class can also check the user token using several algorithms: Mobile OTP (MOTP), OATH/HOTP (RFC 4226) and OATH/TOTP HOTP Time Based (RFC 4226 extension).
It works with compatible software tokens (iPhone, Android, PalmOS, Nokia and other Java J2ME capable phones, ...) and hardware tokens (Feitian, ZyXEL, Authenex, Seamoon, ...)
+3 |
I just ran across this class recently as I was working on my own ideas for the second authentication factor. Should not be difficult to integrate into any existing user management system and greatly increase security. |
- 1 Comment
3.
by Dave Smith - 9 years ago (2015-10-31) in reply to comment 2 by Dave Smith ReplyI should also mention for anyone who does not know. OTP stands for one time password
PHP User Identification: Get and set user identification details
It can retrieve details about the user such its geographic location based the IP address obtained from ipinfo.io, city, country, preferred language, host name, etc..
The details are stored in session variables. Applications can also set other custom variables such as the authenticated user name, personal name, etc..
+3 |
This is the class for User Identification. If you can wait, i've submitted a professional login system that is in approval :) |
- 1 Comment
1.
by Ricky Scotti 
- 9 years ago (2015-09-11) ReplyAs I promise, here you can find a professional login system: http://www.phpclasses.org/package/9332-PHP-Authenticate-and-manage-user-in-sessions.html
Secure PHP Login System: Register and login users using a database via PDO
It can process the registration of a user given the user name, password, name and email address.
It can also authenticate a user given the user name and password and optionally set a cookie to remember the user name on the next login.
The class starts a session for successfully authenticated users.
It can also log out by ending the user session, send a password reminder message and change the user password.
It also implements a two step login process similar to that of Google's, Facebook's SMS security process.
The user can see they devices they used to log in as well as log out from a device used before.
The class also provides an administration interface to manage users, edit details, see statistics, etc..
+5 |
This class implements a user registration and login system using PDO to store and retrieve user records. It uses prepared queries, so it is safe against SQL injection attacks. |
| Recommend package | |
|
|
