Skip to content
This repository has been archived by the owner on Jul 13, 2018. It is now read-only.

NickBorgers/RegistrationForm

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

34 Commits
Configuration Recommendations
Configuration Recommendations
 
 
source
source
 
 
README.md
README.md
 
 

Repository files navigation

Simple Registration/Login code in PHP

Read more:PHP registration form PHP login form

Installation

  1. Edit the file membersite_config.php in the includes folder and update the configuration information (like your email address, Database login etc) Note The script will create the table in the database when you submit the registration form the first time.

  2. Upload the entire 'source' folder to your web site.

  3. You can customize the forms and scripts as required.

  4. Ensure you have installed the mcrypt and mysqli extensions (sometimes in in mysqlnd)

  5. If you are going to use two-factor authentication you are better off if you install browscap.ini: http://php.net/browscap

  6. For a secure site there is much more than simply using a good PHP codebase. Configuration of your webserver and PHP itself are also critical steps you must take. Review the configuration recommendations here for some starting points. OWASP is a good source for additional advice, they were the primary source consulted for the creation of this security-mindful PHP member site.

Security Notes

This PHP Membersite has been reconstructed with stronger security methods throughout. It is now capable of being used in an environment with mitigation for all of OWASP's Top 10 (https://www.owasp.org/index.php/Category:OWASP_Top_Ten_Project).

THIS DOES NOT MEAN THAT BECAUSE YOU USE THIS CODE YOU ARE PROTECTED!

Much of the recommendations extend beyond what can be accomplished solely within a PHP application. You must properly build and configure your site to achieve security! This is only a starting point!

Files

  • register.php

    This script displays the registration form. When the user submits the form, the script sends a confirmation email to the user. The registration is complete only when the user clicks the confirmation link that they received in the email

  • confirmreg.php

    Confirms a user's email address. The user clicks the confirmation link that they receive at their email address and is send to this script. This script verifies the user and marks the user as confirmed. The user can login only after he has confirmed himself.

  • login.php

    The user can login through this login page. After successful login, the user is sent to the page login-home.php

  • access-controlled.php

    This is a sample accesscontrolled page. If the user is logged in, he can view this page. Else the user is sent to login.php

  • includes/membersite_config.php Update your confirguration information in this file

  • includes/fg_membersite.php

    This file contains the main class that controls all the operations (validations, database updation, emailing etc) If you want to edit the email message or make changes to the logic, edit this file

  • includes/class.phpmailer.php

    This script uses PHPMailer to send emails. See:http://sourceforge.net/projects/phpmailer/

  • includes/formvalidator.php

    For form validations on the server side, the PHP form validator from HTML form guide is used See: [PHP form validation] (http://www.html-form-guide.com/php-form/php-form-validation.html)

License

This program is free software published under the terms of the GNU Lesser General Public License. You can freely use it on commercial or non-commercial websites.

About

A PHP based membership (registration/login) code

www.html-form-guide.com/php-form/php-registration-form.html

Resources

Readme
Activity

Stars

0 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • PHP 80.6%
  • JavaScript 16.5%
  • CSS 1.5%
  • HTML 1.3%
  • ApacheConf 0.1%