Authentication is the process of determining whether someone or something is, in fact, who or what it is declared to be.
2
votes
1answer
36 views
PHP Login and Registration system using BCrypt
I'm new to web development and this is my first website. I was wondering if my login and registration system is secure. I was also wondering how to handle viewing parts of a webpage when the user isn'...
1
vote
0answers
24 views
Authenticating voting
My aim is to prevent authenticated users from voting more than once. I am using angularfire2. The code gives me the expected behavior and I was wondering the better way of doing this. The ...
5
votes
1answer
44 views
Filtering ASP.NET membership roles without the default attributes
I am building an application, and I needed an attribute similar to AuthorizeAttribute, supporting Roles but not using the ...
1
vote
1answer
66 views
Hardcoded PHP Login
I am reviewing previous undocumented php work from a predecessor on these two scripts to manage access to an administrative dashboard, but I'm not sure about vulnerabilities and other things that ...
3
votes
4answers
461 views
Prompting user for connection parameters to SQL Server
I try to avoid keeping passwords etc. in memory or in plain text anywhere. But I am on a huge time crunch and this will only be used internally this week then probably won't get touched again. I just ...
4
votes
1answer
70 views
Handling signout flow
There is backend which connects with IdentityServer using WsFederation. The backend is .NET Core project where there is a ...
1
vote
1answer
96 views
User Authentication PHP script
few days ago i made small PHP Authentication API with all basic functionalities (log in, log out, registration, getting authenticated member) and i got suggestions that i should use prepared ...
4
votes
1answer
87 views
PHP Authentication API
I created small simple PHP Authentication API. I have a couple of scripts that I use for session, authentication and registration. Since I'm not an experienced backend and PHP developer, I wanted ...
7
votes
1answer
76 views
Reduce amount of calls to database for authentication
I'm currently having a bit of code, which I just know can be improved a lot. I am just blind to it. All of my code looks quite neat to me, except these parts... The login + authentication process is ...
3
votes
1answer
38 views
Android Authentication Activity with Fragments
I have an Activity called AuthActivity and I would like all of my authentication Fragments to be in this ...
3
votes
0answers
57 views
Validating HMAC-SHA256 signature in Python
I am trying to implement HMAC-SHA256 authentication into my Python RESTful API project. I am using Python Eve (built on top of Flask), started with an simplified HMAC-SHA1 example.
My application is ...
3
votes
1answer
38 views
Login System In Batch
Here I made a program in batch that detects all files with the .user extension. Then it allows the user to pick a username by entering the number associated with that username.
The code is messy, so ...
1
vote
1answer
59 views
Checking for required text fields for login
I wrote this script and it's working quite well however I think there's too much if else statements on it. How could I change them for a switch statement?
...
1
vote
2answers
67 views
Checking an authentication decision in a JSON response
I've been working on this login screen logic.
It checks for the parameters in the JSON response to decide which action to follow. It works but it's kinda ugly and verbose. Any suggestions to ...
4
votes
2answers
124 views
PHP OOP Login Script
I'm new to both PHP and OOP and would like some constructive feedback on a class I made.
I have a "main account" login system already setup and working; when the user logs in they're presented with a ...
0
votes
1answer
68 views
Secure logout PHP code with cookies
I have the following PHP logout script and I would like to know the loopholes present in it. How can I improve it?
...
1
vote
1answer
136 views
Login page with Selenium webdriver
I am automating a login page. I am using the page object design pattern Selenium with Java. What should I improve on in my code?
...
1
vote
1answer
86 views
Secure login and authentication in PHP
This seems to work for me, but I want to make it more secure. I want to see how far I can go without pre-built packages/bundles, so please don't suggest any.
How secure is this? What are some steps I ...
3
votes
1answer
36 views
OpenVPN Authentication Script
I wrote a shell script to authenticate users connecting to an OpenVPN server. When a user attempts to connect, OpenVPN executes the script with the username and password variables sends.
The script ...
3
votes
3answers
575 views
PHP-MySQL sign-in and sign-up project
I have done my first PHP-MySQL project with MySQLi connection. Please review this and inform me about security and performance issues.
dbconnect.php
...
0
votes
2answers
129 views
Making a secure login in PHP
I have made this PHP login page. As far as I know, this is secure enough to avoid attacks and injection.
This script:
Notifies me with an e-mail when someone logs in or fails to login
Only one user ...
3
votes
4answers
330 views
User registration and authentication in PHP and PDO
Please criticize as thoroughly as possible, even the smallest thing will be very useful for me.
I'm trying to create a safe and easy system to change for future projects. I am aware that it should ...
6
votes
2answers
113 views
Authenticating web request to get the xml data from it
I wrote a method early of our development last year about getting the content of a webrequest where it contains an xml data that we need to process and insert to ...
6
votes
2answers
128 views
Powershell cmdlet authenticating to Aerohive API
After dipping my toes in PowerShell for over a year i think it is time for creating a real cmdlet. My first mission was creating a regular PS script to take in a .csv and create a wifi account using ...
2
votes
0answers
77 views
Checking authentication status by looking for a cookie
I'm an Android newbie. I have this function in my code:
...
3
votes
1answer
49 views
Elixir / Phoenix login controller, allowing multiple attempts
I have a login method in my controller. I would like to get rid of the imperative "thinking" and write something more functional.
...
3
votes
2answers
71 views
PHP Authentication Form
Drafted this up today out of the need for a very simple php based login form to protect an html page.
The app is simply included the top of index.html like this:
<...
4
votes
2answers
584 views
LDAP Login Script
This is my first time ever having code peer reviewed! This is just the main function I'm concerned about.
Edit
Apologies for the initial vagueness of my question, this is the "login" part of my ...
4
votes
1answer
94 views
Very basic PHP session handling
I’ve got my first real PHP web application up and running. It is working as expected, but being my first time, I’m sure there is plenty of room for improvement.
Right now, there is one particular ...
1
vote
0answers
116 views
Spring controller for login using Facebook or email
I've got a spring controller class which handles the user logins.
I've got two endpoints:
/user/facebook
/user/email
You can ...
2
votes
2answers
133 views
Simple login page
Could anyone tell me if this code is well written and if it has bugs / vulnerabilities?
class.user.php:
...
2
votes
4answers
145 views
PHP mysqli code for login form
Can you check my code if I wrote like a professional?
connection page.
form sign page.
plan page.
log out page.
First I create the database and tables, then the connection file, then the form sign ...
3
votes
1answer
82 views
PHP Login/cookie authentication
I have an authetication api for an intranet site but I'm a little worried that my design of the authentication is bad and unsafe.
Below is the basic part of the authetication process and I hope I can ...
2
votes
1answer
120 views
Authentication in JSF
I've decided to implement my own custom authentication and authorisation in JSF. I am using Java's BCrypt to check the users' passwords.
The view side of things I can handle; I'm just implementing <...
1
vote
1answer
142 views
Cookie authentication
I have to write a little social network for a case study at university. I have done some simple webapps before but nothing that required authentication, login and so on. So I wrote this little ...
3
votes
1answer
457 views
Logging in to Android application using Firebase
I currently have an app that uses Firebase for logging users in and I would like to know if I can make this code any better. I currently have 4 files:
auth/models/User.java
auth/BaseActivity....
6
votes
1answer
905 views
TCP authentication server and client
This is the first time I'm dealing with C# as I'm accustomed to Java sockets, so I do want your full review and anything you think I can accomplish better or optimize in the code will be very ...
2
votes
1answer
1k views
Login system using a persistent cookie
I want to be sure that my code below properly secures the website based on all of the information provided.
Login System Overview
When a user logs in, the following user info is saved to a ...
0
votes
0answers
26 views
Expressjs display specific error messages on signup
I'm using Node + Express + Mongo, my user Schema has three required fields:
username
email
password
I already took care of how the password is handled, but when it comes to username and email, here'...
3
votes
1answer
202 views
WebAPI Authentication
Do you see any security issues with this authentication approach or have any suggestions?
WebAPI is REST-based. The user logs in by calling the Authentication Controller and expects a 401 if ...
3
votes
1answer
168 views
PHP login and session establishment
I would like to ask your advice on my simple code to login and registration sessions.
In the User class, login function:
...
2
votes
2answers
153 views
Login page code enhancement
I am starting to learn ASP.NET, and I am designing a page for an admin to login and do some stuff. I have the username and password for the admin stored in Web.config (Is that a good practice?).
...
3
votes
1answer
77 views
Android login system
I am completely unaware of all the Android features and available libraries.
I just designed a login system to practice it. I have referred to a few books and tutorials.
Layout
I am using relative ...
6
votes
1answer
508 views
Login UI for an Android app
This code starts a new thread for login and reacts according to the JSON result returned by the server.
I think this code has too many conditionals, exception handlers, and nested functions.
...
3
votes
1answer
176 views
Secure Token for use in API calls
My team has developed an API and I've been tasked with creating an authentication layer that allows partners' applications to consume it. To that end, I've created a data store which houses an ...
4
votes
1answer
1k views
PHP secure login script
I was just wondering how secure my code looked and if I'm overlooking any serious mistakes. Any suggestions/critiques are welcome.
This is my relevant login script.
login.php
...
1
vote
0answers
46 views
Simple login script
This is a simple login script using Bcrypt. Is there anything wrong with this code? It works and my page loads O.K, but could this be optimized for better speeds?
...
2
votes
1answer
392 views
Using PHP's password_hash and password_verify for a login function
This is my first time using password_hash and password_verify in PHP. Would this be the correct usage of ...
1
vote
0answers
62 views
Authentication terminology
Below comes a Value Object to represent UserId in ASP.NET application. It implements Value Identity, so equality is defined by matching of the state calculated at ...
2
votes
0answers
48 views
Function to prevent sign-in form from being spammed
I have written a function that I want to protect from spam bots. I have used two techniques the first being filter after submit. After reading around I obtained the ...
