Authenticatication checking in CodeIgniter

Posted on July 14, 2008 by afruj

Wanna protect your website from unauthorized ppl. You can use session library to check authentication in CI.

At first you have to create a model for login check:

<?php
class Login_model extends Model
{
function Login_model()
{
parent::Model();
$this->load->library(‘session’);
}

function checkAuth($uName,$pass){
$this->db->select(‘*’);
$this->db->where(‘user=’,$uName);
$this->db->where(‘pass=’,md5($pass));
$this->db->where(‘enabled=’,1);
$query = $this->db->get(‘your_users_table’);
//echo $this->db->last_query();
if($query->num_rows()>0){
$data = $query->row_array();
$sessionArray = array( ‘uid’=>$data[‘ID’],
‘role’=>$data[‘your_group’],
‘name’=>$data[‘firstname’].’ ‘.$data[‘surname’],
‘logged_in’=>TRUE
);

$this->session->set_userdata($sessionArray);
$log=array(‘user_id’=>$this->session->userdata(‘uid’),
‘action_type’=>’LOGIN’,
‘item_type’=>’USER’,
‘time’=>time());
//echo $this->db->last_query();
$this->log_message($log);
return TRUE;
}else{
return FALSE;
}
}

public function check_session()
{
if ($this->session->userdata(‘uid’) AND $this->session->userdata(‘logged_in’)==’TRUE’) {
return TRUE;
} else {
return FALSE;
}
}

public function logout(){

$this->session->unset_userdata(‘id’);
$this->session->unset_userdata(‘logged_in’);
session_destroy();
$log=array(‘user_id’=>$this->session->userdata(‘uid’),
‘action_type’=>’LOGOUT’,
‘item_type’=>’USER’,
‘time’=>time());
$this->log_message($log);
}

public function log_message($logArray){
if(isset($logArray)){
$this->db->insert(‘your_log’,$logArray);
}
}
}
?>

Now add following code to your login controller:

<?php
session_start();
error_reporting(0);
class Login extends Controller {

function Login()
{
parent::Controller();
$this->load->helper(‘url’);
$this->load->library(‘session’);
$this->load->model(‘login_model’,’login’,TRUE);
}

function index()
{
/* if the form is submitted – check whether the user is already logged in or not */
if($this->login->check_session()){
redirect(‘/main’);
}
$this->load->library(‘validation’);

$rules[‘username’] = “trim|required”;
$rules[‘password’] = “required”;
$this->validation->set_rules($rules);

$fields[‘username’] = ‘Username’;
$fields[‘password’] = ‘Password’;
$this->validation->set_fields($fields);

/* check all fields are validated correctly */
if($this->validation->run() == FALSE){
$this->load->view(‘/login_view’);
}else{
$userName = $this->input->post(‘username’);
$password = $this->input->post(‘password’);

$chkAuth = $this->login->checkAuth($userName,$password);
if($chkAuth){
redirect(‘/main’); //load cpanel file – authentication successful
}else{
redirect(‘/login/invalid’); //failed auth – return to the login form
}
}
}
}
?>

for each controller within constructor function write the following code for authentication check:

$this->load->library(‘session’);
$this->load->model(‘login_model’,’login’,TRUE);

/* check whether login or not */
if(!$this->login->check_session()){
redirect(‘/login’);
}

Now your CI project is capable to authentication handling. Best of luck.

Filed under: CodeIgniter | Tagged: , , , , |

« »

17 Responses

  2. CodeIgniter Framework :: TermiT's Blog, on July 14, 2008 at 7:27 pm said:

    […] Authenticatication checking in CodeIgniter […]

    Reply
  3. Frank, on July 14, 2008 at 9:24 pm said:

    Thank you for the snippets – useful!

    Reply
  4. Jorge m s Junior, on July 30, 2008 at 3:05 pm said:

    Estive olhando o seu codigo
    .
    Authenticatication checking in CodeIgniter
    .
    estou com dificuldades para faze-lo rodar voce teria mais alguma dica para repassar
    .
    .
    Desde já agradeço.

    I was looking at its code
    .
    Authenticatication checking in CodeIgniter
    .
    I’m having trouble running do it you would have more to pass on some advice
    .
    .
    I would thank.

    Reply
  5. zEsHaN GSC Lahore, on August 22, 2008 at 5:05 am said:

    Gud working……..

    Reply
  7. batman, on March 12, 2009 at 8:40 pm said:

    nice tut – thank you.

    Reply
  8. ready, on August 5, 2009 at 10:26 am said:

    missing something, i need “Login_view” just for example…
    where can i get that?

    beNew..

    Reply
  9. NongOff, on August 22, 2009 at 5:16 pm said:

    i need “Login_view” too.

    Reply
  10. Curzon Rahman, on October 5, 2009 at 9:28 am said:

    hello Afruj aapu ,
    আপনার CodeIgniter এর Code গুলো আমার কাজে লেগেছে। ধন্যবাদ আপু…

    Reply
  11. Md. Abdullah al mamun, on April 17, 2010 at 5:40 am said:

    Thanks for the code. session_destroy() in Login_model and session_start() in Login controller, why should I use them? Is it really needed in CI for session class, though that are native session PHP. If i use CI i thought that is handled by CI. So i am in confusion ! Please let me know the right way……

    Reply
  12. Руководства, статьи и заметки, on July 20, 2010 at 3:42 am said:

    […] Authenticatication checking in CodeIgniter […]

    Reply
  13. mocyc, on August 5, 2010 at 5:53 pm said:

    very good.I need code.

    Reply
  14. John Doe, on May 7, 2011 at 4:39 pm said:

    You’re not using $_SESSION anywhere.

    CI’s session class does not use native PHP sessions.

    Stop bloating your code with session_start and session_destroy.

    Reply
  15. Angele Wile, on July 20, 2011 at 5:54 pm said:

    Can I just say what a reduction to search out somebody who truly knows what theyre speaking about on the internet. You positively know methods to bring a difficulty to gentle and make it important. Extra individuals need to learn this and perceive this facet of the story. I cant imagine youre no more well-liked since you positively have the gift.some tips here Fastest Weightloss

    Reply
  16. Android PC, on August 22, 2011 at 5:00 pm said:

    Howdy! Do you know if they make any plugins to help with Search Engine Optimization? I’m trying to get my blog to rank for some targeted keywords but I’m not seeing very good success. If you know of any please share. Appreciate it!

    Reply
  17. iso 9001, on September 22, 2011 at 5:59 pm said:

    Machen Sie weiter so work.I ‘ll Rückkehr oft.

    Reply

Leave a comment