Original Source
https://pdocrud.com/demo/pages/user-login-management
User Login & Access Management
We have added complete user based login and access management. During login process, you can now define different session that needs to be set based on the column of the table (or static value). After login, you can define whether to allow access of page based on user session. Till version 3.2, script has functionality to check user login only, now it can check for user access also.
Code explanation - First you will need to define session variables that needs to be set on successful login. You can define any number of session variables. A session variable can contain value from database table or static value using the setUserSession() function. After this, when user will try to access a certain page, you can check whether to allow that user access or not using the checkUserSession() function. In checkUserSession() function, you can define value to be checked against user session value.
//Login page code
$pdo_crud = new PDOCrud();
// (Optional step) before checking the login data if you want to peform any operation like password encryption etc/(optional)
//$pdo_crud->addCallback("before_select", "beforeloginCallback");
//only required fields to be display on form
$pdo_crud->formFields(array("email", "password"));
//set session variables - 1st parameter is the session variable name and 2nd is value to be matched in database table
$pdo_crud->setUserSession("userName", "user_name");
//You can set any no. of session variables
$pdo_crud->setUserSession("userId", "user_id");
$pdo_crud->setUserSession("role", "role");
$pdo_crud->setUserSession("lastLoginTime", date("now"));
///redirect to some page after login (optional)-2nd parameter specify whether to redirect or not if no records found
$pdo_crud->formRedirection("http://pdocrud.com/demo/allforms/user-access-management/after-login-page.php", true);
// set db table to your user table and call render function with select form
echo $pdo_crud->dbTable("login")->render("selectform");
//Any page to check access management code
$pdo_crud = new PDOCrud();
if ($pdo_crud->checkUserSession("userId")) {
if ($pdo_crud->checkUserSession("role", array("admin", "author", "editor"))) {
echo "Welcome ".$pdo_crud->getUserSession("userName");
echo $pdo_crud->dbTable("employee")->render();
}
echo "You don't have sufficient permission to access this page.";
} else {
echo "You are not allowed to access this page.";
}
//Logout page code
$pdo_crud = new PDOCrud();
//set session variables - 1st parameter is the session variable name and 2nd is value to be matched in database table
$pdo_crud->unsetUserSession("userName");
//or you can unset all user session variable set by setUserSession function
$pdo_crud->unsetUserSession();
//Optional callback actions
//Add following code in script/pdocrud.php. This is basically callback functions so must be present in the script/pdocrud.php
//example of how to add action function
function beforeloginCallback($data, $obj) {
//do something like if your passwords are md5 encrypted then change the value
$data["login"]["password"] = md5($data["users"]["password"]);
return $data;
}
Login Demo
You can easily create complete login form and add callback functions to save session related data to check login on various pages using the PDOCrud script. First you need to add callback functions and call pdocrud render selectform on appropriate database login table and also add these callback function defination in the script/pdocrud.php.
$pdo_crud = new PDOCrud();
// we need to add actions
// before checking the login data if you want to peform any operation like password encryption etc/(optional)
$pdo_crud->addCallback("before_select", "beforeloginCallback");
// after login, we generally want to save the data in session
$pdo_crud->addCallback("after_select", "afterLoginCallBack");
//only required fields to be display on form
$pdo_crud->formFields(array("email", "password"));
//redirect to some page after login (optional)
$pdo_crud->formRedirection("http://localhost/school/index.php?page=student&operation=add");
// set db table to your user table and call render function with select form
echo $pdo_crud->dbTable("users")->render("selectform");
//After this add following code in script/pdocrud.php. This is basically callback functions so must be present in the script/pdocrud.php
//example of how to add action function
function beforeloginCallback($data, $obj) {
//do something like if your passwords are md5 encrypted then change the value
$data["users"]["password"] = md5($data["users"]["password"]);
return $data;
}
function afterLoginCallBack($data, $obj) {
@session_start();
if (count($data)) {
//save data in session
$_SESSION["data"] = $data;
}
else{
//no record found so don't redirect
$obj->formRedirection("");
}
}
}
Callback Function
$pdocrud = new PDOCrud();
//Add callback function "beforeloginCallback" on before_select event
$pdocrud->addCallback("before_select", "beforeloginCallback");
echo $pdocrud->dbTable("users")->render();
// Available events are
//This 'beforeloginCallback' function must be added on script/pdocrud.php file
// e.g. before data submission encrypt user password
function beforeloginCallback($data, $this) {
$data["data"]["user_pass"]= md5($data["data"]["user_pass"]);
return $data;
}