Security & Authentication
This project will build upon the previous lab by allowing Administrator
access to delete records in the URL databases.
In Lab 7, you created a folder called lab7 under which you created a
URL content management system.
Create a new folder named
lab8. Your new work will go in this folder - both so that you will have a
backup in lab7 just in case any problems appear, and so that you will be able to
add new components without fear of messing up previous code.
The CMS site should be expanded to have the following page/function:
- admin.php: Admin function - PASSWORD PROTECTED - Displays all urls and their
types and titles. Has ONE form that lists all sites along with a the number of
each URL (it's URL ID) and a Remove
a URL option (just a text box that asks for the URL ID to remove a
single URL at a time).
NOTE: You only need to have one page in Lab 8 - the admin.php page.
Don't worry about the rest of the lab7 site - it's already functional in the
- Use HTTP authentication as shown in Chapter 8, along with a new table (url_admin)
that has fields for usernames and passwords. You should enter yourself as a
user, and you should enter a user bpayne whose password (encrypted) is
bpayne1, so that I can test your admin capabilities.
Save the page, upload it to the server, and link to it from your main page.
©2005 - Bryson R. Payne, Ph.D. - All