News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

StackOverflow.com:
The Definitive Guide To Forms based Website Authentication
August 12, 2011 @ 12:13:35

If you haven't seen it yet, there's a post over on StackOverflow that's been growing over the past few days about form-based authentication in websites. The author wants to make a definitive resource for people to use when making good, secure user authentication systems.

Please help us create the definitive resource for this topic. We believe that stackoverflow should not just be a resource for very specific technical questions, but also for general guidelines on how to solve variations on common problems. "Form Based Authentication For Websites" should be a fine topic for such an experiment.

They want to include topics like logins, storing passwords, "forgot password" security, OpenID, browser autocompletion, password strength, email validation and more. They already laid out eight different sections with summaries including:

  • How To Remain Logged In - The Infamous "Remember Me" Checkbox
  • Using Secret Questions
  • Checking Password Strength
  • Much More - Or: Preventing Rapid-Fire Login Attempts
  • Two-Factor Authentication and Authentication Providers

There's some good feedback from other users with other suggestions and links to external resources that could shed some more light on the topic.

1 comment voice your opinion now!
guide form security user authentication website


blog comments powered by Disqus

Similar Posts

WeberDev.com: User Authentication With patUser (Part 2)

Anson Cheung's Blog: Top 10 PHP Best Security Practices for Sys Admins

PHP-Security.net: New PHP-CGI Exploit (CVE-2012-1823)

DevShed: Private Pages with PHP and Text Files

Anna Filina's Blog: Building a conference website


Community Events





Don't see your event here?
Let us know!


release community tips developer symfony list conference threedevsandamaybe bugfix code podcast deployment laravel api language framework series interview zendserver introduction

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework