Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed last year.
Improve this question
I have a native PHP project using SESSIONS for logging users in. Now the client needs to implement MFA within the project and require to request the confirmation code every 30 days of last verification.
Is there any documentation or resources to learn how to implement MFA on native PHP project? I searched but there aren't a lot of resources demonstrate how to do this thing on native PHP app.
You can use PHP library for Two Factor Authentication package: https://github.com/RobThree/TwoFactorAuth
This library can use Microsoft TFA authentication service on your mobile (works on Android and IOS). Session life control can be achieved by a custom cron job or PHP configuration session.gc_maxlifetime
Related
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 5 years ago.
Improve this question
app using Ionic and have a PHP api backend for this app.
We need to integrate Telegram API messaging in this app, I need to use the API and not bot as we need to retrieve the users contacts to allow them to send new private message.
I have spent over 7 hours on looking for examples and Telegrams docs however still cant find a way to implement this, I wanted to know if anyone can point me in the right direction.
PHP implementation of the telegram mtproto protocol.This project can run on PHP 7, PHP 5.6 and HHVM, only 64 bit systems are supported ATM.
https://github.com/danog/MadelineProto
or
https://daniil.it/MadelineProto
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 7 years ago.
Improve this question
I'm planning to build a REST-Centric web dashboard in PHP. Without connecting to the databases directly. All data 100% comes in and goes out through REST calls alone. I've gone through few framework for writing API like slim, silex, Wave and Lumen, gonna pick one form this (for Azure & MSSQL), My concern is whether developing the Dashboard in Angular or some other js & pure HTML will have any security issue or is it safe to go with Server-side scripts for dashboard too?
Interesting question, I'm doing research for a similar project and this is what I have so far:
All the opensource out there don't fill 100% the needs I have for the project so I can't use them (ie: not mobile ready or not tv ready or poor browser support)
Because of the above, I will need to build a custom solution:
server side: Lumen framework for the log in and for securing+processing all the dashboard requests
client side: I will use a angular.js + dashboard template (from envato or from strapui). You can also do it with jQuery.
I hope it helps
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 7 years ago.
Improve this question
I need a library based on php(preferably) like loginWithBitbucket.php so that, I send authorization request to it and it will authorize the bitbucket user by opening new tab and asking for user login credentials and do the authorization and then return the response data i.e. JSON data as the response of the ajax request.
Have a library for node.js and one for PHP. Both were just a quick Google search away. You should definitely use Google if you search for a library the next time.
Oauth.io is one such library. Its very easy to use.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 7 years ago.
Improve this question
I'm going to build a back-end API REST using Laravel 5 for an iOS application (perhaps for Android in the future) so I found a couple of packages on github for the API authentication:
https://github.com/chrisbjr/api-guard
https://github.com/lucadegasperi/oauth2-server-laravel
And I want to know what's the different between them and what package could be the good choice for my API and of course If you have some advices or another packages to use, will be perfect.
Kind regards.
The oAuth2 server package follows rfc6749 and will help you have an Auth server like fb. (please see the link I provided for more information)
You may use a second app for it to separate your servers. (Auth server - resource server)
I never used api-guard but as it says in read me, It will provide a basic api key protection.
If you are planning to share your api with third party apps with user permission, I advice you to follow the oAuth2 path.
But if you are planning to use it in your app only, you definitely need api key only. Don't spend time for oAuth2 configurations.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
We don’t allow questions seeking recommendations for books, tools, software libraries, and more. You can edit the question so it can be answered with facts and citations.
Closed 7 years ago.
Improve this question
I'd like to develop a portal similar to what a company like OneLogin (http://www.onelogin.com/) has: The user would login with their login credentials then have links to the web resources that their account is associated with. When they see their resources all they need to do is click on them and they'll be automatically login in (SAML authentication).
Are there any open source projects out there that have started on this effort? It would be great if there was something that we could use as a base to build on top of with a friendly license (e.g. MIT).
Thanks
You tagged it "php" but that doesn't appear in your question?
Essentially, you need a client-side SAML stack.
I've listed all the ones I know about here:
SAML : A SAML stack .
In terms of php, have a look at simplesamlPHP.
That has all the plumbing you'll need and it's open source.
If you want it developed with Symfony2 PHP framework you could check SamlSPBundle or its foundation stand-alone library lightsaml