advanced code snippet search

Posted By

asifjavedall on 01/21/11


Tagged


Versions (?)

Who likes this?

3 people have marked this snippet as a favorite

Desoxena
nickian
guillermoj88gmailcom


secure admin area

 / Published in: PHP
 

put this code in top index file. require_once('auth.inc.php');

Expand | Embed | Plain Text 
  1. <?php
  2. //auth.inc.php
  3. session_start();
  4. if (isset($_SESSION['newlogin'])) { 
  5. unset($_SESSION['newlogin']);
  6. unset($_SESSION['loggedout']);
  7. };
  8. $valid_passwords = array ("phil" => "nitelite2k10!!!!!!!!!!");
  9. $valid_apasswords = array ("admin" => "onefunction2k10!!!!!!!!!!");
  10. $valid_users = array_keys($valid_passwords);
  11. $valid_admin = array_keys($valid_apasswords);
  12.  
  13. $user = $_SERVER['PHP_AUTH_USER'];
  14. $pass = $_SERVER['PHP_AUTH_PW'];
  15.  
  16. $avalidated = (in_array($user, $valid_admin)) && ($pass == $valid_apasswords[$user]);
  17. $uvalidated = (in_array($user, $valid_users)) && ($pass == $valid_passwords[$user]);
  18. $validated = (($uvalidated == true) || ($avalidated == true)) ;
  19.  
  20. if (!$validated || isset($_SESSION['loggedout'])) {
  21. 		$_SESSION['newlogin'] = true;
  22. 		header('WWW-Authenticate: Basic realm="Login Area"');
  23. 		header('HTTP/1.0 401 Unauthorized');
  24. 		?>
  25. <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
  26. <html xmlns="http://www.w3.org/1999/xhtml">
  27. <head>
  28. <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
  29. <title>Auth Screen</title>
  30. </head>
  31.  
  32. <body>
  33. <div id="messagebox">Authorisation Required.</div>
  34. </body>
  35. </html>
  36. 		<?php
  37. 		exit;
  38. };
  39.  
  40. ?>

Report this snippet  

You need to login to post a comment.