DeathsAlive Posted September 2, 2013 Posted September 2, 2013 Anyone know how the login/session management system works? Or offer any insight into how this might be achieved. I have yet to look at it myself. It's just on my list of things to do and was wondering if anyone else has achieved this, so it could expedite my process :) Quote
Dayo Posted September 2, 2013 Posted September 2, 2013 ive not worked with NWE but i should imagine it works like this 1) User logs in (with save option selected) 2) Server sets cookie with a random session key 3) Server inserts a row into a sessions table holding the same random session key and a user id 4) On each page load the server will check for the cookie, if its there it will search the DB for the same session key if its there the software will load the data for the user ID. 5) if its not there it will prompt the user to login. 6) it may have a feature if your session key is incorrect XX times it may lock you out the system (so you cant just keep changing the cookie) 1 Quote
DeathsAlive Posted September 2, 2013 Author Posted September 2, 2013 The fundamentals of how it's done are easy. I'm just unsure of how to do it within the modular system that NWE uses. And of course deal with the existing encryption. Might be a case of remaking the "login" module I feel...? Quote
a_bertrand Posted September 2, 2013 Posted September 2, 2013 I don't think you must in every case redo the login... I'm pretty sure you can handle with the existing code. Quote
DeathsAlive Posted September 2, 2013 Author Posted September 2, 2013 Well. When I get in from work, I'll take a look at it :) Think it may be a case of creating a session table, which holds a encrypted cookie data. And on page load, checking that data? Thinking about it, could be easily done with a hook maybe. Ether way, I'll have a play with it when I get home! ^_^ Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.