How To Control User Access in a PHP Application
Рет қаралды 40,148
Күн бұрынIn this video we review code that allows us to restrict unauthorized users from accessing specific pages on your website.
Full Course
Udemy (Discount Coupon Attached): bit.ly/udemy-mo...
SkillShare (2 Months Free Premium Access): skl.sh/3897t8m
___________________________________________________________________
I am a Software Engineer and Instructor. I can provide professional development services or private code coaching sessions to help you to accomplish your profesisonal or personal IT goals.
Check out my content on Social Media
Website: www.trevoirwil...
Instagram: / trevthetrevwill
Facebook: / trevoirwilliams
LinkedIn: / trevoirwilliams
Check out some free courses below:
Microsoft SQL Server 2017 for Everyone! - Database Development Course
• Microsoft SQL Server 2...
PHP Bootstrap 4, Heroku and MySQL Course
• PHP Bootstrap 4, Herok...
PHP Development with Bootstrap, GitHub and Heroku
• PHP Development with B...
Modern PHP Web Development with MySQL, GitHub and Bootstrap 4
• Modern PHP Web Develop...
C# - Basics Uncovered
• C# - Basics Uncovered
Enterprise C# Winforms Application Development
• Enterprise C# Winforms...
Introduction To Website Technologies
• Introduction To Websit...
Check out my premium courses on Udemy
End to End ASP.NET Core 3.1 API and Blazor Development
www.udemy.com/...
C# Console and Windows Forms Development with LINQ & ADO.NET
www.udemy.com/...
Complete ASP.Net Core 3.1 and Entity Framework Development
www.udemy.com/...
Modern PHP Web Development w/ MySQL, GitHub & Heroku
www.udemy.com/...
Microsoft SQL Server Development for Everyone!
www.udemy.com/...
@marias3457 3 жыл бұрын
Very well explained! Thankyou for not having too much fluff that is too common in tutorial videos. Even not having the rest of the pages available, I was still able to implement this correctly.
@TrevoirWilliams 3 жыл бұрын
Thats great to hear Maria. I always try to keep it simple and functional. I am glad you liked it.
@somdusazerate 3 жыл бұрын
top job, man. saved me a lot of trouble. you won't believe how hard it is to find clear guides to do this!! I googled for like 2 hours collectively
@TrevoirWilliams 3 жыл бұрын
Thanks for the endorsement. I am glad this video helped!
@somdusazerate 3 жыл бұрын
@@TrevoirWilliams yeah, man, it's a simple thing for sure for someone who knows this stuff, but I'm rather old at 30 years old getting into this and there has been no one to exactly show me how to do this. also a lot of good content, your work does not go unappreciated 👍
@somdusazerate 3 жыл бұрын
and obviously subbed!
@TrevoirWilliams 3 жыл бұрын
I appreciate it man. If you have any suggestions or requests, just let me know
@liviubarburo 2 жыл бұрын
Wow! Man you are a great teacher! You explained the session auth so clear and fast … Thank you!
@TrevoirWilliams 2 жыл бұрын
I am happy to help Liviu
@nadinev65 3 жыл бұрын
You are a complete legend Trevoir. So simple a fix and really well explained. Cheers mate.
@TrevoirWilliams 3 жыл бұрын
I am happy to be able to help Terry. Thanks for the endorsement !
@Doope2 16 күн бұрын
This is so cool, i've learn so much. But i have a question and a task. How do I set restrictions for registored user with, lets say a button instead of writting the username and password in the code directly ($user->inseruser(admin,password). Im trying to use a button to add admin but i am stuck and dont' know what to do
@TrevoirWilliams 15 күн бұрын
You can create a form for user creation (restrict it to admin access, of course), and then when a valid submission is made, you insert that new user into the system with the admin user type flags. Outside of that, consider that they need to set a password, or you can generate a password and send it to the new user via email. That could be more secure, but it's an excellent way to start. You can also use a standard password, and at the time of login, if they use that password, you force them to reset it.
@clintonbrown4235 Жыл бұрын
Passing information fast and simply 👍
@nestahmaedelosreyes1825 3 жыл бұрын
Omg, finally, you saved me sir! Thank you so much!
@TrevoirWilliams 3 жыл бұрын
You're most welcome!
@emilypayne1855 Жыл бұрын
Thank you so much, your tutorials are awesome
@TrevoirWilliams Жыл бұрын
Happy to help
@tyronetaylor5928 4 жыл бұрын
Really great videos...could you do a video on roles...anxiously anticipating...
@TrevoirWilliams 4 жыл бұрын
Hey Tyrone, this is a good suggestion. I will do one soon.
@micahemmanuel7580 2 жыл бұрын
Thanks for this tutorial. Thanks. My own issue is that when I login it will say login successful and hang there without redirecting me to the dashboard. How can I fix this issue?
@TrevoirWilliams 2 жыл бұрын
Can you share the redirect code? The error might be in how it was written
@meghapatel3928 5 ай бұрын
how to do this thing on particular button Likewise the user just wants to visit website
@TrevoirWilliams Ай бұрын
Only apply the check on the pages that you want to protect.
@aseemanand4030 3 жыл бұрын
what if i open the application and login in some other browser....? this won't prevent me from logging in again there using same creds!
@TrevoirWilliams 3 жыл бұрын
Hello Aseem. This very simple implementation will not prevent that. That will require more complex checks to ensure that doesn't happen.
@perperikis5501 Жыл бұрын
Dumb question: What prevents a user that logs in with a valid sesion, to modify - by using the browser tools - the value of userid in order to act as a different one ?
@TrevoirWilliams Жыл бұрын
There are no dumb questions. The user id value is stored as a session, which is stored on the server. Without direct access, this will not be very easy to do. That being said, you have valid security concerns and there are certainly better ways to handle authentication scenarios.
@perperikis5501 Жыл бұрын
@@TrevoirWilliams Thank you very much for the straight forward reply. Not being stored on the client side is reassuring as I'm using such an authentication and deciding post-login what to show on the page, according to user logged in. It wouldn't do if a user could impersonate another.
@ashwithbhatt6406 3 жыл бұрын
But one problem I am facing that if someone gets logged in then if by other tab we try to access that page it gets accessed why?
@TrevoirWilliams 3 жыл бұрын
Ashwith, The session you create is stored by the browser, so it will remember that it is signed in. You would need to enhance the login approach to do other things.
@valentincvc 3 жыл бұрын
Thank you for help!
@TrevoirWilliams 3 жыл бұрын
You're welcome!
@despitegfx 4 жыл бұрын
hi, I really have a challenge here. This work perfect on localhost but the restricted page doesn't show if i upload my files to the cpanel. It keeps showing the login page after entering the correct login credential. Can you help me out? :)
@TrevoirWilliams 4 жыл бұрын
Hello, are you changing out the connection string to reflect the remote database and if yes, then are you sure that the same users exist on both side with the same password?
@visualdad9453 3 жыл бұрын
thank you :)
@TrevoirWilliams 3 жыл бұрын
You're most welcome
@gideonhayford87 2 ай бұрын
my own doesn't access ooo
@TrevoirWilliams Ай бұрын
What error are oyu getting?
@Samuel-ns5jb 2 жыл бұрын
Can we get the source code?
@TrevoirWilliams 2 жыл бұрын
You can find the course code here: github.com/trevoirwilliams/attendance-php
@Samuel-ns5jb 2 жыл бұрын
@@TrevoirWilliams thank you.
Dani Krossing
Рет қаралды 24 М.
Fabiosa Best Lifehacks
Рет қаралды 35 МЛН
Funda Of Web IT
Рет қаралды 4,4 М.
Quick Programming
Рет қаралды 46 М.
Web Tech Knowledge
Рет қаралды 217 М.
BoostMyTool
Рет қаралды 9 М.
Web Tech Knowledge
Рет қаралды 68 М.
Funda Of Web IT
Рет қаралды 26 М.
Continuous Delivery
Рет қаралды 154 М.
Fabiosa Best Lifehacks
Рет қаралды 35 МЛН