Hi
I'm in need of a AJAX / PHP / Javascript / login system for my PHP based websites. Requirements are:
1. Slide down functionality like [login to view URL] After the user is logged in, print the name of the customer beside the logout link
2. MySQL back-end where passwords are hashed and salted.
3. Configurable session timeout in the script..
4. No user registration needed. User management will be handled by an app.
5. Store the UserID, username and Name in the session.
6. All php files that I will protect should only have one line of code to check if the user is authenticated. Example: require('[login to view URL]');
7. Block the user if more than X login attempts (configurable in script).
8. Code to prevent SQL injection.
8. Generate unique hashed and salted signature of the user based on IP address and the browser then append it to session. This will be used to authenticate the user session to make sure it belongs to an authorized user and not to anyone else who try to hijack the session.
9. Forgot password function.
10. Change password function
At the moment you will have to set up the demo on your test server for the development.
I'm also open for suggestion should you have something else to add about security
I’ve understood your requirements. I’ve a better knowledge in Wordpress, HTML5, CSS3, PHP, MySQL, AJAX, jQuery and Javascript. Ready to start the work. Please check the private message for more information. Thank you!