Skip to content

ddauth Dragonfly Development's Auth System

World Wide Web Server edited this page Jul 4, 2012 · 9 revisions

[h3]ddauth - Dragonfly Development's Auth System[/h3]

The ddauth add-on for CodeIgniter? is intended to be a flexible authentication library focussing almost entirely on the problem of creating a secure authentication ticket and attempts to place as few restrictions as possible on the application using it.

The primary purpose for writing this library was the fact that many of the existing CodeIgniter authentication systems were either too complicated to implement easily, required too much integration into the application itself or focused solely on cookies and did not support fallback authentication methods for when cookies are not available.

The latter is particularly important when using any sort of application with a web application that requires authentication as Flash cannot be assumed to send the browser's cookies reliably. In this case, it is beneficial to be able to pass the authentication ticket to the Flash movie and instruct it to pass the ticket along as a GET or POST param.

The core security principles were inspired by [url=http://cookies.lcs.mit.edu/pubs/webauth:tr.pdf]"Dos and Don'ts of Client Authentication on the Web."[/url]

[h3]Goals[/h3]

[ol][li]Unobtrusive to Model[ul][li]Does not require any Model interaction whatsoever[/li][li]Makes only the following assumptions about what is needed to authenticate a "user"[ul][/ul][/li][/ul][/li][/ol]

Unobtrusive to Model

  • Does not require any Model interaction whatsoever
  • Makes only the following assumptions about what is needed to authenticate a "user":
    • A username
    • A password
    • A user identifier (could be username!)

Unobtrusive to Controller

  • Only requires one call from the Controller to start
  • Only requires one method be implemented by the Controller

Must work in absence of cookies

  • Falls back to finding authentication information from GET or POST params

[h3]Examples[/h3]

Check out some [url=http://code.google.com/p/dd-ci-ddauth/wiki/SimpleExamples]simple examples[/url]

[h3]Download[/h3]

ddauth can be [url=http://code.google.com/p/dd-ci-ddauth/downloads]downloaded here[/url].

[h3]Source[/h3]

The source for ddauth can be [url=http://github.com/dflydev/dd-ci-ddauth]found on GitHub[/url].

[h3]Categories[/h3]

Category:Libraries::Authentication Category:Contributions::Libraries::Authentication

Clone this wiki locally