Do you need to know how to apply best practices for user authentication in PHP?
This course walks you through a series of best practices that you can apply to your own PHP projects to avoid costly security pitfalls.
Instructor Kevin Skoglund gives you an overview of user authentication in PHP, then dives into how you can implement it. He steps through creating the database table, adding new users, logging users in and out, and controlling access to pages and functions.
Kevin shows you how to work with strong passwords, prevent weak ones, and reset forgotten ones. He shows you how to secure user authentication by preventing insecure direct object references (IDOR), using HTTPS, protecting access tokens, and keeping track of logins.
Kevin concludes with a challenge/solution set exploring how to write PHP code that expires a user login after a set amount of time has passed.