Skip to content

ddauth Dragonfly Development Auth System

Jump to bottom Edit New page
Derek Jones edited this page Jul 5, 2012 · 7 revisions

ddauth - Dragonfly Development's Auth System

The ddauth add-on for CodeIgniter is intended to be a flexible authentication library focussing almost entirely on the problem of creating a secure authentication ticket and attempts to place as few restrictions as possible on the application using it.

The primary purpose for writing this library was the fact that many of the existing CodeIgniter authentication systems were either too complicated to implement easily, required too much integration into the application itself or focused solely on cookies and did not support fallback authentication methods for when cookies are not available.

The latter is particularly important when using any sort of application with a web application that requires authentication as Flash cannot be assumed to send the browser's cookies reliably. In this case, it is beneficial to be able to pass the authentication ticket to the Flash movie and instruct it to pass the ticket along as a GET or POST param.

The core security principles were inspired by "Dos and Don'ts of Client Authentication on the Web."

Goals

1) Unobtrusive to Model

  • Does not require any Model interaction whatsoever
  • Makes only the following assumptions about what is needed to authenticate a "user":
    • A username
    • A password
    • A user identifier (could be username!) 2) Unobtrusive to Controller
  • Only requires one call from the Controller to start
  • Only requires one method be implemented by the Controller 3) Must work in absence of cookies
  • Falls back to finding authentication information from GET or POST params

What doesn't ddauth do?

  • ddauth does not attempt to handle any authorization, only authentication.
  • ddauth does not handle registration or manage users in any way.

If you are looking "kitchen sink" functionality, ddauth is not for you. If you want to have the flexibility to handle all of the user management and authorization yourself but not worry about having to reinvent the basic authentication wheel for every project, ddauth may be for you!

Project

ddauth is hosted on Google Code and can be found here: http://code.google.com/p/dd-ci-ddauth/

Examples

Check out some simple examples.

Download

ddauth can be downloaded here.

Source

The source for ddauth can be found on GitHub.

Categories

Category:Libraries::Authentication Category:Contributions::Libraries::Authentication

Add a custom footer
Add a custom sidebar
Clone this wiki locally