I want to make an app for this website: https://my.iusd.org/LoginParent.aspx
I wanted someone to just list the steps that I need to take to make an app that will let the user enter a username, password on the iDevice, and then pass those variables from the iDevice to that site ,so that if the authentication is correct, I can parse the data once the user logs in to show his or her grades.
If I need to make a separate php script to modify/pass variables to the site, how can I run the script for free without having to manage a server?
Thanks in advance.
Related
Good day. I want to make a simple CRUD guest form system with Laravel. I want to make a web page containing a form that only can be accessed after scanning a QR code. Here is the flow:
User -> Scan QR code -> Access to web page -> Fill in the form -> Submit.
The problem is that after scanning a QR code the user will directed to that web page with a link shown to the public, making that the user can copy or save and access the link later without actually scanning the QR code again. This will let user to input their data even without being asked or scanning the QR, leading into a data redundancy in the database.
Is there any idea how can I make this to work? Or maybe another solution?
Thank you.
If you want to create a link with temporary lifetime and signed, you can create signed URL and use that. have a look at the documentation.
https://laravel.com/docs/9.x/urls#signed-urls
I'm new to ionic. From last 2/3 weeks, I'm working on ionic to build a mobile app for our web application & currently in confusion at one step. Need some suggestion regarding the best way to solve this.
Our web application is built upon PHP & we are not using any kind of REST architecture in it. Since now, we are moving to the mobile app we are trying to refactor our codebase. So that, one base code will handle all both(mobile app/web app) kind of request.
In mobile app side, I'm using OAUTH(http://bshaffer.github.io/oauth2-server-php-docs/). It's working fine. I can able to login/logout. But, I can't able to manage my PHP SESSION data.
In the web application, I know after login PHP send a session id which get stored in browser cookie & in all subsequent HTTP call it gets attached by browser. But, in my mobile app I'm not getting that SESSION ID after login. So, I thought maybe this is the reason for which my mobile app is not getting the user's SESSION data.
To resolve this, what I've done now...
After getting, authorization token & refresh token from OAUTH server, I include current PHP SESSION ID also in the data set & return back to the mobile app. Then, in all subsequent Http call I send that SESSION ID value to server side & by using the following code, I retrieve the user's SESSION data.
session_id($_POST['session_id']);
session_start();
$UserData = $_SESSION['User'];
It's working now. But, I really don't know whether it's a right way to do such things or not & mostly I'm concern with security issue associated with this. Can anyone guide me with this?
Regards
I am trying to make a dashboard application, that among others will retrieve information from a xing account and store it in our database. Right now, we the default oauth implementation, if the user is not logged in, it asks for his permission, and then returns back to the webpage that all the information is shown.
We need to automate the login process, so that every day for example, our php script will run and copy our xing contacts in the database. But we need that happening without manually loging in to Xing.
I have read/tried a lot of the curl/php scripts for logging in a website, but none of them actually worked for xing.
Can someone please provide me with the php script that would just login to xing.com?
Thanks a lot for your time...
Xing seem to have an API. That would be the vastly superior way to fetch data from them.
Scraping the web site is prone to breaking, and probably against their Terms and Conditions, too.
I am developing a Flash game for Facebook that uses PHP to access MySQL to store users game info. I am a bit stuck right now though. Here is my scenario.
User logs into Facebook and starts app which calls index.php and houses my Flash game. (works fine).
I use $facebook->getUser(); to authenticate and begin gathering user information (also works fine).
Flash will then access a getdata.php file on my server that will access MySql and echo certain info (ie. fname=John&lname=Doe&age=25).
Step 3 is the problem and I'll do my best to explain it...
My getdata.php also does a $facebook->getUser(); authentication, but the user is NOT authenticated on that script, whereas within the IFRAME app, the user is still authenticated. I'm assuming it has something to do with the fact that the main page is within Facebook's IFRAME and is possibly seen as a different session than when Flash tries to connect with my getdata.php file on my server. Is this the case? And can anyone help point me in the right direction as to how I might use Flash within an IFrame app to access a script on my server to retreive variables?
EDIT: I should mention that I'm using ActionScript 3 for Flash, but I'm fairly certain the problem doesn't lie there because it will retrieve the variables, but since the user is not authenticated on the server, then it will return a success=0.
Also wanted to point out that if I access my flash game through my actual server, and not Facebook, then all works well. Another reason why I think it's a session-type problem.
This is a session problem. You should try to pass the facebook signed_request, or any data you can use to build a valid user session, into your flash file and then pass them back to getdata.php where it can be used to access the users data.
I am grabbing some data to put in my iOS app by visiting an url. But now, given the URL, the users can access the content of my application without using it. Is there a way to hide the info on this URL from public?
The content I get is through a php script to get the database queries.
You can set up a security system on your website and connect to it using a special URL with an encoded variable.
For example you can make your iOS application connect to :
http://mywebsite.com/somepage.php?id=yuw7262
Then in your PHP page, you can get the value of "id", decipher it and if it is valid, allow the user to go forward. It is pidgin security but it will work.
Put some security in your php scripts.
Use $_SESSIONs to verify that a user is logged in and is using your app correctly