Sign in to follow this  
petergood

[TUTORIAL]How to make a register/login/logout system for your game in PHP.

Recommended Posts

No password hashing? No SQL sanitizing? No sql prepared statements? Regardless of complexity, safely storing a password is a serious issue, and I strongly encourage that this should be taught from start.

It's not funny when a newcommer follows a tutorial, happens to have moderate success with his first attempts; and then all his user passwords are stolen and all the sql database was destroyed.

It isn't that hard either, specially considering nowadays there is a plug 'n play solution in phppass.
Prepared statements are as easy as normal queries, and they should be preferred when teaching.

Share this post


Link to post
Share on other sites

Also, use parameterized queries to keep searches cleaner and quicker.

 

You don't have to loop through the entire set of rows. Where's the WHERE clause? Build a query which will complete something like "SELECT username, password FROM users WHERE Username = $username AND password = $password"

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

Sign in to follow this