Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 5 years ago.
Improve this question
I'm not quite sure if this is possible, but I am looking for a way to get the twitter username of a person visiting a website. Does anyone know if there is a way to do this, or if I always need a user to confirm that I am seeing this data?
Preferably I'm looking for a PHP library that I can do this with.
No, that is not possible. Think of the security vulnerabilities: if any website could access your Twitter account information without your permission, then you essentially have no privacy.
You need to use OAuth to first ask the user to sign in. Then, you will have limited access to that user's account information.
Here is a list of PHP libraries to help you do this.
Related
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 5 years ago.
Improve this question
After hours of trial and error, using WAMP i made a login system that mails me locally ( password recovery etc). I want to make pages that only the user has information tailored to the user, think of it as a profile page Facebook or Twitter, the news updates.
You can use sessions. In php you can type session_start(), then you can store some information about the user. So if the user don't have a session he can't access the page. Search about session_start(). You will find many examples about it.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 6 years ago.
Improve this question
i want to login from my website via link on a partnership website. To program this with PHP, is not a problem for me. But i ask myself if there is a standard or good practice to do this.
My current solution is to use a proxy. Does anyone have a better idea?
Many thanks.
You should definitely take care that the link for log in on that partner website is only valid once. Moreover, you should take care of timing attacks, etc.
The best thing is that you use one-time tokens and that your websites communicate with each other via an internal API. This prevents most of the issues.
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 6 years ago.
Improve this question
I'm creating a wordpress website, and I want that when I or an user make a post it gets automatically reposted to other sites.
I know that there is API for major websites, for example facebook and twitter. But what if I want to make a post in olx.com? they have no API. Is there a way to create a php function that logs into olx, post and logs out? It doesn't have to be a php function, i'm open to ideas.
There is a lot of reasons to not do that.
Better stay safe and play with the websites that have api, allow feeds or already implemented a way for you to post on their sites.
Closed. This question needs details or clarity. It is not currently accepting answers.
Want to improve this question? Add details and clarify the problem by editing this post.
Closed 8 years ago.
Improve this question
Well im working on a small php script and i want to make a test to see if the visitor is logged to facebook in his computer using php.
I want to do it in these way:
If (USER IS CONNECTED){echo "yes";}else{echo "no";}
Is it possible? if yes how can i do it ?
There is no documented way to achieve this. The JS is there for a reason (AJAX requests).
The article you're referring to is exploiting redirects after login, and doesn't even work (fails to recognize you're logged into Twitter). Something that starts with "I found a way to abuse" shouldn't be taken into consideration.
That's unethical, it exploits a loophole that will be fixed sooner or later, and I call it cracking.
Why would you need this information anyhow?
Closed. This question needs to be more focused. It is not currently accepting answers.
Want to improve this question? Update the question so it focuses on one problem only by editing this post.
Closed 9 years ago.
Improve this question
what is the best way to forbid access for bots to login file? I just don't want let them to login to website. Is it possible?
Thats why we have Captcha Sequences and Images . Which eats our head whenever they appear.
Bots Basically use Brute Force algorithms to get access into your site.
So you can stop any bot from using brute force by applying this captcha if any session has two wrong password attempts.
Create Sessions for each login using PHP and show that captcha whenever there are two wrong password attempts.