PHP網頁安全認證的實例詳解
不基于數據庫:
<?php
//unset($_SERVER['PHP_AUTH_USER']);
$strAuthUser= $_SERVER['PHP_AUTH_USER'];
$strAuthPass= $_SERVER['PHP_AUTH_PW'];
if (! ($strAuthUser == "a" && $strAuthPass == "a")) {
header('WWW-Authenticate: Basic realm="wly"');
header('HTTP/1.0 401 Unauthorized');
echo "用戶驗證!!";
exit;
} else {
echo "驗證通過";
header("location:http://www.baidu.com");
//unset($_SERVER['PHP_AUTH_USER']);
}
?>
基于數據庫:
<?php
function authenticate_user() {
header('WWW-Authenticate: Basic realm="Secret Stash"');
header("HTTP/1.0 401 Unauthorized");
exit;
}
if (! isset($_SERVER['PHP_AUTH_USER'])) {
authenticate_user();
} else {
mysql_pconnect("localhost","authenticator","secret") or die("Can't connect to database server!");
mysql_select_db("java2s") or die("Can't select authentication database!");
$query = "SELECT username, pswd FROM user WHERE username='$_SERVER[PHP_AUTH_USER]' AND pswd=MD5('$_SERVER[PHP_AUTH_PW]')";
$result = mysql_query($query);
// If nothing was found, reprompt the user for the login information.
if (mysql_num_rows($result) == 0) {
authenticate_user();
}
}
?>
如有疑問請留言或者到本站社區交流討論,感謝閱讀,希望能幫助到大家,謝謝大家對本站的支持!
【網站聲明】本站除付費源碼經過測試外,其他素材未做測試,不保證完整性,網站上部分源碼僅限學習交流,請勿用于商業用途。如損害你的權益請聯系客服QQ:2655101040 給予處理,謝謝支持。