We’ve made a long called for and much needed change to our PHP Login Script. We’ve changed the way e-mails are sent, using the very popular PHPMailer in place of the standard PHP Mail() function. This will allow you to make use of SMTP sending and both further secures and improves email sending. If you just require the updated files, please contact us.
Category - PHP Login Script
In recent months we’ve added to the latest changes and improvements with some minor updates and fixes that all adds up to a new and improved stable PHP Login Script. Want to use Google reCaptcha? You’ll need to sign up at Google and get your unique Google keys that you then enter in to the script. Contact us for more details.
If you are familiar with Hybrid Apps already then you’ll know that you can’t use PHP, and if you are looking to design an app that allows your clients, customers or users to log in and/or retrieve data from a database, then you either have to learn a whole new way to do this or you can implement the PHP Login Script. By using a PHP API in between the app and the database and JSON within your hybrid app code you can check whether your user is logged in or not, and you can retrieve and display data from a MySQL database. It sounds complicated, but it’s not. We have demo and exmaples standing by and can help you get started.
If you want more details, please contact us – here.
We’ve made some huge improvements to the PHP Login and User Management Script including radically changing and improving the way that User Sessions are handled. You can now view and delete individual user sessions, as well as allowing multiple logins from the same user account – or turning that off so that you log someone else off if you sign in with the same account, as it was before.
We’ve also improved security around the Remember Me cookie (persistant login) and the Password Reset function. A link is now sent to the email address, which you then click to change the password, rather than the password itself be sent through the email. This was a long time coming! We’ve also improved and streamlined the database, added Goole Recaptcha and made some nice GUI chganges, especially around user management.
If you are updating the script, it might be best to contact us first for assiatnce as a lot depends on what version of the script you are using. If you have recently downloaed Version 2.5 then the update will be much easier, earlier versions require changes to the passwords for each user, updating them to BCRYPT, which is a lot more work. As always, take backups before attempting to update the script.
We’ve made some changes to improve the hashing algorithm used with user passwords, upgrading it from SHA256 to Bcrypt.
This update requires updates to the database and there have been a few changes to the code. Please contact us for help with upgrading.
The Techy Bit…
We’ve made use of PHP’s password_hash and password_verify functions to help improve and simplify the user password hashing process. This reduces the code as the previous SALT in the database is not needed. In future any hashing algorithms updates should not require to any additional changes to the database as this is updated with the password_hash function and the database column for the password is increased to 255 characters.
We’ve fixed a couple of issues and made a change that will now kick users out of their sessions when they are banned rather than waiting for them log off and try logging in again, improving the security of the script. Thanks for your continued support!
I’ve added a couple of new features to the Single User Login Script – it now stores the password hashed rather than in plain text so should the script or file storing the password become compromised, your password is safe! I’ve also trimmed it down and added the ability to log off. Find out more here!
The Angry Frog Single User Login Script is a single user PHP Login system that is both secure, very easy to setup and implement, and does NOT require a database. It’s perfect for small web applications, scripts, and personal pages which only have a single admin using them. The script does not support multiple users.
We’ve added a feature that some have been crying out for ages! You can now log on with your e-mail address. The flip-side to this however is that we have removed the option to be able to register accounts with duplicate e-mail address (which actually makes a lot of sense). The latest update requires updating a few files and removing the ALLOW_DUPE_EMAIL column from the configuration table in the database. As well as that we’ve improved the error info when admin’s unsuccessfully create new accounts (such as duplicate e-mail address, etc). Download the update now – here.
The Login Script has been updated to include the more secure SHA256 hashing algorithm for user passwords. With the hash() PHP function included in the script, it’s actually possible to use any of the available PHP algorithm. It remains backwards compatible with SHA1. A small update is required for the database as well as some updated files. Download it here- here.
The ability to log every user’s move (including your admins) has been added to the script. Find out when users are logging on, off, resetting passwords or when they are being deleted by your admins, plus more. Buy it or get the update at CodeCanyon – here.