Member Avatar for dwdata

Hello,

I have just started to develop a PHP/mySQL site and was wondering if there are any Open Source Security Frameworks they can recommended.

Not only do I want to deal with data hacking issues, but also want to know what the best practices to insure that users are not bookmarking or manipulating strings that can be passed through the URL. For example, I have list of users where they can EDIT their info via a GET navigation link. I would prefer them not having the ability it bookmark the link or even better be able to access the user record via their HISTORY.

In a nutshell, I am seeking a way to make user use the system as developed. For example, I want make a user does not have the ability to reach an update form unless they accessed it from the proper page.

Any feedback on this would be greatly appreciated. Thanks.

Edited by dwdata because: n/a
  • 3 Contributors
  • 2 Replies
  • 178 Views
  • 18 Hours Discussion Span
  • Latest Post Latest Post by network18

Recommended Answers

All 2 Replies

Member Avatar for slr

Hello,

I have just started to develop a PHP/mySQL site and was wondering if there are any Open Source Security Frameworks they can recommended.

Not only do I want to deal with data hacking issues, but also want to know what the best practices to insure that users are not bookmarking or manipulating strings that can be passed through the URL. For example, I have list of users where they can EDIT their info via a GET navigation link. I would prefer them not having the ability it bookmark the link or even better be able to access the user record via their HISTORY.

In a nutshell, I am seeking a way to make user use the system as developed. For example, I want make a user does not have the ability to reach an update form unless they accessed it from the proper page.

Any feedback on this would be greatly appreciated. Thanks.

You can use PHP sessions. You can use POST. You can use SSL.

CakePHP http://book.cakephp.org/view/175/Security-Component

I do no think CakePHP is the easiest to start off with

Member Avatar for network18

I think what you are looking for it, is .htaccess

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.