Skip to content
World Wide Web Server edited this page Jul 4, 2012 · 49 revisions

Category:Libraries::Authorization

[h3]Introduction[/h3]

The user authorization system that handles login and registration of users based on the Sentry-system.(yes it is the modified Sentry. this one is working on CI 1.5.0.1 and higher) It uses a configuration database table to store user information and stores minimal information in the session. Features [b]

  • Login/logout functionality.

  • Registration, with activation.

  • Forgotten password reset.

  • Auto-login via cookie.

  • Support for multiple languages.[/li] [/b] The Auth system is made up of the following components:

  • AuthLib core library class in the system\application\libraries - AuthLib core library handles the heavy lifting of performing the security functions.

  • The configuration in the system\application\config\authconfig.php - The configuration allows you to set various configuration options and tailor the auth library to your system without a lot of reworking of code.

  • The auth helper file in system\helper\auth_helper.php - Auth helper wraps AuthLib calls to make them easier to use from views.

  • The Auth controller class in the system\application\controllers\auth.php - System controller class routes calls to the AuthLib library.

  • View in the system\application\views\auth

  • Sample Welcome controller and welcome_message view that shows simple usage. [h3]Requirements[/h3] Requires:

  • DBSession (included)

  • Auth (included)

  • Database (MySQL sample scripts for user and country tables included)

[b]Database:[/b]

Create the necessary tables in your database importing the following file:

  • [url=http://www.codeigniter.com/wiki/File:auth_mysql.txt/]auth_mysql.txt[/url]

Create the db_session table in your DB: [code] CREATE TABLE IF NOT EXISTS ci_sessions ( session_id varchar(40) DEFAULT '0' NOT NULL, ip_address varchar(16) DEFAULT '0' NOT NULL, user_agent varchar(50) NOT NULL, last_activity int(10) unsigned DEFAULT 0 NOT NULL, session_data text default '' not null, PRIMARY KEY (session_id) ); [/code]

[b]Files:[/b]

The zip file contains the Auth and the DBSession library files. Simple unzip them to your Code Igniter location. The zip file contains the correct directory structure for a standard Code Igniter installations.

If you have a non-standard installation, I would recommend installing the DBSession and Auth libraries to the system\libraries folder so that is is available across applications. The init script can handle the auth system being in either the application or system libraries folder.

Autoload the following core libraries by editing the $autoload[’core’] array in your application\autoload.php config: 'database', 'dbsession', 'authlib'

Autoload the following helpers by editing the $autoload[’helper] array in your application\autoload.php config: 'array', 'form', 'auth', 'url'

Almost all the configuration for the auth system can be done via the application\auth.php. Almost anything from table and field names to views to security can be configured without any code changes to the auth system.

You will also need to specify a database.php and email.php configuration scripts. See the Code Igniter User Guide Email chapter, [url=http://www.codeigniter.com/user_guide/libraries/email.html]Guide Setting Email Preferences section[/url], for information on email configuration. See the Code Igniter User Guide Database chapter, [url=http://www.codeigniter.com/user_guide/database/configuration.html]Database Configuration section[/url], for information on database configuration.

A system account has been provided with the database scripts. It has a user name of ‘system’ and a password of ‘changeme’.

[h3]Usage:[/h3]

Use of the Auth system is as easy as calling the [b]check()[/b] method as follows:

[code]$this->authlib->check();[/code]

The check() method determines if a user is logged on and if not redirects them to a login page. You can use the check() method either in the controller constructor in order to secure an entire controller such as an admin controller or from individual actions. The check() method only ever returns a true value.

[h3]Other useful methods are:[/h3]

  • [b]isValidUser()[/b] library or helper methods are places you can check for whether a user has been authenticated.

  • [b]isAdmin()[/b] allows you to use a user authorization system to determine if user is an admin.

  • [b]asPermission()[/b] allows you to use a user authorization system to determine if a user has a specific permission (or priviledge).

  • [b]getUserName()[/b] returns the name of the logged in user.

  • [b]getSecurityRole()[/b] returns the name of the security role of the logged in user.

  • [b]getSecurityRoleId()[/b] returns the id of the security role of the logged in user.

These methods can be called from the auth object, i.e. [code]$this->authlib->isValidUser()[/code]

, for use in controllers or as a helper method, i.e. isValidUser()

in views.

download: File:auth.zip sql: File:auth_mysql.txt

Discusion on the forums about auth, you wil find [url=http://www.codeigniter.com/forums/viewthread/2586/]here[/url]

Clone this wiki locally