Is there are good library or logic to create this: long lasting (few years) sessions for user identification. Session management like in Gmail and Facebook will be bonus.
3
There are 3 answers
Related Questions in PHP
- sendxmpp not authorized failure (Error AuthSend)
- C# agsxmpp Domain vs connectionserver
- Android Smack4.1.1 XMPP FileTransfer Issue with Iphone
- How to login with recently registered user to openfire in ios?
- Server less Group Messaging (chating) Xmpp
- SASLException not authorized using smack 4.1.1
- Android aSmack - How to make custom message extension for file sending?
- Unable to receive upstream GCM messages with Node.js + XMPP
- Is Node-XMPP useless ? Choosing XMPP server
- Allow ejabberd_service (Jabber Component Protocol) to modify user's roster
Related Questions in SESSION
- sendxmpp not authorized failure (Error AuthSend)
- C# agsxmpp Domain vs connectionserver
- Android Smack4.1.1 XMPP FileTransfer Issue with Iphone
- How to login with recently registered user to openfire in ios?
- Server less Group Messaging (chating) Xmpp
- SASLException not authorized using smack 4.1.1
- Android aSmack - How to make custom message extension for file sending?
- Unable to receive upstream GCM messages with Node.js + XMPP
- Is Node-XMPP useless ? Choosing XMPP server
- Allow ejabberd_service (Jabber Component Protocol) to modify user's roster
Related Questions in USER-IDENTIFICATION
- sendxmpp not authorized failure (Error AuthSend)
- C# agsxmpp Domain vs connectionserver
- Android Smack4.1.1 XMPP FileTransfer Issue with Iphone
- How to login with recently registered user to openfire in ios?
- Server less Group Messaging (chating) Xmpp
- SASLException not authorized using smack 4.1.1
- Android aSmack - How to make custom message extension for file sending?
- Unable to receive upstream GCM messages with Node.js + XMPP
- Is Node-XMPP useless ? Choosing XMPP server
- Allow ejabberd_service (Jabber Component Protocol) to modify user's roster
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Popular Tags
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
You need to setup a mix of cookies and sessions. Remember that sessions only last until the browser is closed or even worst until the time between 2 requests goes over the time limit imposed by the server.
First To make all this possible you are forced to use cookies. To this end, note that if a user changes browser or flush his cookies, the permanent session will stop working.
Second thing is to create a hash in the cookie that can only be used from this location for that user. For example: use the hash of REMOTE_ADDR and the userid in your database. Therefore, it doesn't become a security threat because there are no information that can be extrapolated from the cookies apart from a hash that doesn't do much... for now.
Third, when the user is sending a request, check if that cookie is there and use the hash to compare against the same hash in your database. (You can put this hash in the user's table but i suggest creating another table so that a user can universaly log on from several places) This hash in your database will be the key to retrieving the account that you want to log in.
Fourth, when you find the account to login, remember to update the hash in the cookies and obviously at this point use the SESSION system within php to continue working on your app normally.
This method has been proved successful for many "Remember me" based sites...