Free PHP Login Library [closed]

Answer 1

Some points before the answer.

1. You may rethink your strategy on frameworks. Modern frameworks like Zend Framework and also Symfony2 are loosely coupled. This means: you dont need to download/use the whole framework.

2. Another reason to rethink it, is that these frameworks are often robust, widely tested and used. In terms of performance they are not always of huge impact, especially with apc and other optimization methods, so are you affraid you will use too much harddisk space?

3. Your question is about something specific but easily done. This is exactly the type of stuff that frameworks are good at. Codeigniter, Zend Framework, Symfony, Symfony2 (am I missing one?), all offer code that will allow you to do this in maximum a matter of hours.

Libraries I would consider

1. Zend_Auth (has only zend_exception as hard depencencies). It's lightweight and has many options for integration with openauth and such. (requires about 10 php files) http://framework.zend.com/manual/en/zend.auth.html

2. Apache ZetaComponents (before ezcomponents) http://incubator.apache.org/zetacomponents/documentation/trunk/Authentication/tutorial.html

3. Pear LiveUser http://pear.php.net/package/LiveUser/download/

4. If you were to consider codeigniter, check this out: http://codeigniter.com/wiki/Category:Libraries::Authentication/

Answer 2

UserCake

http://usercake.com/

• Login Register Lost password recovery
• Update password Update user email
• Email templates (optional) SHA1
• security + Salt / Hash Account
• activation (optional) Resend
• activation email (optional) User
• groups (Basic, id - group_name)
• Multilingual support

Or

You can try http://phpuserclass.com/

Answer 3

This tutorial is a bit on the old side, but it is one of the best out there and is very well done. There's no framework, it's just plain old good OOP PHP.]1 The code is available for download on the Tut.

It's well written, includes Cookies, and has a robust back end for user admin.

Answer 4

If the libraries you find do not apply, many of the concepts I presume you'll look into involve either combining PHP and LDAP, and/or PHP and the Apache authentication modules.

Your authentication requirements should also respect the principles of defense in depth.

Also, you might need to discover if your project requires authentication for JSON, XML-RPC, or REST APIs that could be operated by non-browser clients.