I will continue to issue releases here on the blog but if you want the most up-to-date release, the BitBuck repository is the way to go.

Many thanks for the work! I’ve got a small project I’m working on at the moment, and didn’t want to go for something too crazy with features. A simple “in or out” authentication mechanism (aka. Erkana auth) is just what I needed!

I had a problem however, where the Erkana_auth library was referring to $this->CI->account (and throwing an error), capitalizing ‘Account’ wherever the the load->model was called, and references to $this->CI->Account seemed to fix everything. I’m a bit curious why I got this problem and no one else seemed to mention it above

Other than that, was just wondering why there is no logout library method? seems like it would be as simple as a call to $this->CI->session->unset_userdata() – or would this somehow be a bad idea?

Is there somewhere I should be checking for newer releases? I haven’t taken the plunge into mercurial yet, and still prefer downloading “releases” – do you make regular release of erkanaauth?

Thanks again for your lightweight authentication library. I’ve been thinking of releasing a CI library of my own and plan to use yours as an example.

Also, I’m not sure if it’s a bug or just something up with the way I’m using ErkanaAuth, but I have a library called Auth_wrapper that loads ErkanaAuth, and the first time I tried to log in, I got an error about a call on an undefined object in validate_login. I added a check that the CI_Session class exists (as you did in other methods) and it seems to have fixed it:

if (!class_exists(‘CI_Session’)) {
$this->CI->load->library(‘session’);
}

Thanks again!

(ps – just noticed the phrase “whom which” in my first post… I don’t know what a whom which is, but it sounds delicious!)

Keep an eye on the BitBucket repository for future development.

I realize that alpha code shouldn’t be used in production, but I have a client for whom which security was a secondary concern to just getting the website online (there is no personal data, no financial data or transactions – purely product / location information). I made an admin controller so he could log in and maintain that information himself, and included a very rudimentary login system that wasn’t very secure. Security isn’t my strong point, and with smart guys like you inventing the wheel (or maybe in the case of erkana the “zen” of the wheel), I’m happy to use a library, so long as it’s demonstrably secure.

I guess my question is this: would using erkana 2.0 on a production site be the lesser evil to my hackneyed attempt at security? you seem to cover many more of the bases than my attempt did anyway.

Also, how long / how far away, until you post that you’re happy with the code, and it’s got the stamped seal of approval for use in production code?