Go Back   vb.org Archive > vBulletin 3 Discussion > vB3 Programming Discussions
FAQ Community Calendar Today's Posts Search

Reply
 
Thread Tools Display Modes
  #1  
Old 05-31-2005, 03:06 AM
shak_attack shak_attack is offline
 
Join Date: Dec 2004
Posts: 10
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default Validating using shared sessions

I've been trying to get my sessions to be shared across servers for verification purposes, i've tried a number of methods including passing the session id through the url but all has failed.

Heres the core script:
PHP Code:
<?
session_start();
if (!empty($_POST['username']) && !empty($_POST['password'])) {
include("./sqldata.php"); //file that contains the variables on the next line
$connection = mysql_connect($host, $user, $pass) or die ("Unable to connect!"); // open connection
mysql_select_db($db) or die ("Unable to select database!"); // select database

$pusername = mysql_real_escape_string($_POST['username']);
$ppassword = mysql_real_escape_string($_POST['password']);
$query = "SELECT * FROM $table WHERE username ='$pusername'";
$result = mysql_query($query) or die ("Error in query: $query. " . mysql_error()); // execute query
$row = mysql_fetch_assoc($result); // see if any rows were returned
if ((mysql_num_rows($result) > 0) && (md5(md5($ppassword).$row['salt']) == $row['password'])) {

    if (in_array($row['usergroupid'], array(6,2,5,7))) {

        if (isset($_POST['remember'])){
        $_COOKIE['public']= $pusername;
        setcookie("public", $pusername, time()+60*60*24*100, "/");
        } else {
        $_SESSION['public'] = 1;
        }

    }
        } else {
        $error = "<div class=\"content\">Username / Password Incorrect<br><br>Note: Your Username / Password combination is the same as the one used on NarutoMania forums.</div>";
    }     


        mysql_free_result($result); // free result set memory
        mysql_close($connection); // close connection

    } else {
        $error = "<div class=\"content\">Please enter both your forum username and password.</div>";
    
}
?>
<title>NarutoMania - Naruto Direct Downloads</title>
<body leftmargin="0" topmargin="0">
<center>
<link rel="stylesheet" href="./style.css" type="text/css">
<?php include("./header.txt"); ?>
<?php 
include("./nav.txt"); ?>
<?php 
include("./precontent.txt"); ?>
<?    
    if(isset($_SESSION['public']) or isset($_COOKIE['public'])) {
    include("http://66.28.205.245/downloads.php");
    } else {
    include("nlogin.php");
    echo $error;
    }
?>
<?php require("./footer.txt"); ?>
</center>
This login script works off a vbulletin database, hence the hashed+salted password check and usergroupid check. Now, this script works perfectly fine, the only thing is, http://66.28.205.245/downloads.php has no way of checking whether a user is logged in or not. I don't know how to share the sessions, I tried a custom session_set_save_handler but it didn't work out, although I think I did it wrong.

Im using fread on download.php on the external server to spit files to users, this is all in attempt to prevent leeching without having to use .htaccess methods. I also want to implement some sort of resume feature, I know it can be done using [HTTP_RANGE] but then again, I don't know how to make the checks to see if the user is logged in or not.

Any help would be appreciated.
Reply With Quote
  #2  
Old 05-31-2005, 12:58 PM
Marco van Herwaarden Marco van Herwaarden is offline
 
Join Date: Jul 2004
Posts: 25,415
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

Are the servers both in the same domain?
Reply With Quote
  #3  
Old 05-31-2005, 01:12 PM
shak_attack shak_attack is offline
 
Join Date: Dec 2004
Posts: 10
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default

No, these servers are completely independant, not linked in any way.
Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 09:50 AM.


Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.08049 seconds
  • Memory Usage 2,180KB
  • Queries Executed 11 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)bbcode_php
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (3)post_thanks_box
  • (3)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (3)post_thanks_postbit_info
  • (3)postbit
  • (3)postbit_onlinestatus
  • (3)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 

Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete