Comments on: ErkanaAuth Version 2.0a http://www.michaelwales.com/2010/02/erkanaauth-version-2-0a/ Senior Developer Michael Wales, featuring articles on web development (PHP, Python and Ruby), industry highlights and open source software releases. Mon, 03 Oct 2011 14:20:05 +0000 hourly 1 http://wordpress.org/?v=3.2.1 By: Michael Wales http://www.michaelwales.com/2010/02/erkanaauth-version-2-0a/#comment-1306 Michael Wales Tue, 22 Mar 2011 03:15:46 +0000 http://www.michaelwales.com/?p=43#comment-1306 @nvcleemp Unfortunately, I haven't had a lot of time to work on ErkanaAuth. I will say, I think the version that is available is solid enough to use on any publicly available application. With that being said, ErkanaAuth isn't really to the point at which I wished it would be and I look forward to working on it in the future. The CI Reactor team has a lot of changes coming down the pipeline and I'd like to wait and see what they have in store before I progress any further. @nvcleemp
Unfortunately, I haven’t had a lot of time to work on ErkanaAuth. I will say, I think the version that is available is solid enough to use on any publicly available application. With that being said, ErkanaAuth isn’t really to the point at which I wished it would be and I look forward to working on it in the future.

The CI Reactor team has a lot of changes coming down the pipeline and I’d like to wait and see what they have in store before I progress any further.

]]> By: nvcleemp http://www.michaelwales.com/2010/02/erkanaauth-version-2-0a/#comment-1305 nvcleemp Mon, 21 Mar 2011 06:54:40 +0000 http://www.michaelwales.com/?p=43#comment-1305 Hi Michael I really love the idea behind this project and I'm currently planning to use it in my next project. I was however wondering what the status of this project is? I see on BitBucket that you tagged version 2.0 two months ago and that you're talking about version 3.0. Does this mean that 2.0 is out of alpha, because it doesn't look like you changed anything since the initial import? ;-) Hi Michael

I really love the idea behind this project and I’m currently planning to use it in my next project. I was however wondering what the status of this project is? I see on BitBucket that you tagged version 2.0 two months ago and that you’re talking about version 3.0. Does this mean that 2.0 is out of alpha, because it doesn’t look like you changed anything since the initial import? ;-)

]]> By: Fabian Tollenaar http://www.michaelwales.com/2010/02/erkanaauth-version-2-0a/#comment-358 Fabian Tollenaar Sat, 03 Jul 2010 11:40:50 +0000 http://www.michaelwales.com/?p=43#comment-358 Hi Michael, Great work, though I've got some tips to make it just a bit better. - you could use a lib like PHPass (http://www.openwall.com/phpass/) to make your hashed & salted passwords even harder to crack. - rewrite your code to PHP 5. In PHP5 you have a lot more features in classes (constructs, destructs, private, protected and public variables and methods) which can help make your code even more secure from other pieces of code. (protect a developer from itself!) Fabian CTO at I'mHalal.com Hi Michael,

Great work, though I’ve got some tips to make it just a bit better.
- you could use a lib like PHPass (http://www.openwall.com/phpass/) to make your hashed & salted passwords even harder to crack.
- rewrite your code to PHP 5. In PHP5 you have a lot more features in classes (constructs, destructs, private, protected and public variables and methods) which can help make your code even more secure from other pieces of code. (protect a developer from itself!)

Fabian
CTO at I’mHalal.com

]]> By: Michael Wales http://www.michaelwales.com/2010/02/erkanaauth-version-2-0a/#comment-326 Michael Wales Mon, 03 May 2010 02:42:26 +0000 http://www.michaelwales.com/?p=43#comment-326 @Nick Your issue sounds like a Linux vs. Windows issue with capatilization (Linux views capitals as a different character than lowercase). This is probably an issue with the model and I will look into whether this is inherent to ErkanaAuth itself, or release a number of guidances if it is a user-generated error. I will continue to issue releases here on the blog but if you want the most up-to-date release, the BitBuck repository is the way to go. @Nick
Your issue sounds like a Linux vs. Windows issue with capatilization (Linux views capitals as a different character than lowercase). This is probably an issue with the model and I will look into whether this is inherent to ErkanaAuth itself, or release a number of guidances if it is a user-generated error.

I will continue to issue releases here on the blog but if you want the most up-to-date release, the BitBuck repository is the way to go.

]]> By: Nick Jennings http://www.michaelwales.com/2010/02/erkanaauth-version-2-0a/#comment-325 Nick Jennings Sun, 02 May 2010 21:28:21 +0000 http://www.michaelwales.com/?p=43#comment-325 Hi Michael, Many thanks for the work! I've got a small project I'm working on at the moment, and didn't want to go for something too crazy with features. A simple "in or out" authentication mechanism (aka. Erkana auth) is just what I needed! I had a problem however, where the Erkana_auth library was referring to $this->CI->account (and throwing an error), capitalizing 'Account' wherever the the load->model was called, and references to $this->CI->Account seemed to fix everything. I'm a bit curious why I got this problem and no one else seemed to mention it above :) Other than that, was just wondering why there is no logout library method? seems like it would be as simple as a call to $this->CI->session->unset_userdata() - or would this somehow be a bad idea? Is there somewhere I should be checking for newer releases? I haven't taken the plunge into mercurial yet, and still prefer downloading "releases" - do you make regular release of erkanaauth? Thanks again for your lightweight authentication library. I've been thinking of releasing a CI library of my own and plan to use yours as an example. Hi Michael,

Many thanks for the work! I’ve got a small project I’m working on at the moment, and didn’t want to go for something too crazy with features. A simple “in or out” authentication mechanism (aka. Erkana auth) is just what I needed!

I had a problem however, where the Erkana_auth library was referring to $this->CI->account (and throwing an error), capitalizing ‘Account’ wherever the the load->model was called, and references to $this->CI->Account seemed to fix everything. I’m a bit curious why I got this problem and no one else seemed to mention it above :)

Other than that, was just wondering why there is no logout library method? seems like it would be as simple as a call to $this->CI->session->unset_userdata() – or would this somehow be a bad idea?

Is there somewhere I should be checking for newer releases? I haven’t taken the plunge into mercurial yet, and still prefer downloading “releases” – do you make regular release of erkanaauth?

Thanks again for your lightweight authentication library. I’ve been thinking of releasing a CI library of my own and plan to use yours as an example.

]]> By: Jason H http://www.michaelwales.com/2010/02/erkanaauth-version-2-0a/#comment-321 Jason H Sat, 01 May 2010 02:39:32 +0000 http://www.michaelwales.com/?p=43#comment-321 Love it man, keep up the good work. A solid, well thought out auth library for CodeIgniter will help it go far! Love it man, keep up the good work. A solid, well thought out auth library for CodeIgniter will help it go far!

]]> By: vecima http://www.michaelwales.com/2010/02/erkanaauth-version-2-0a/#comment-309 vecima Tue, 27 Apr 2010 22:50:03 +0000 http://www.michaelwales.com/?p=43#comment-309 haha, I'd consider it an honor to contribute something to ErkanaAuth! I don't have any of the accounts you mentioned, but I'll look into 'em. I need to roll out the security update for the client I mentioned earlier tonight, but I'll definitely look into it in the next couple days. haha, I’d consider it an honor to contribute something to ErkanaAuth! I don’t have any of the accounts you mentioned, but I’ll look into ‘em. I need to roll out the security update for the client I mentioned earlier tonight, but I’ll definitely look into it in the next couple days.

]]> By: Michael Wales http://www.michaelwales.com/2010/02/erkanaauth-version-2-0a/#comment-308 Michael Wales Tue, 27 Apr 2010 21:49:31 +0000 http://www.michaelwales.com/?p=43#comment-308 @vecima Glad to see your contributions to the library! If you use Mercurial and have a BitBucket account, it would be great if you could fork the project, commit your changes and send me a pull request. This is the easiest way for me to accept and vet community contributions. @vecima
Glad to see your contributions to the library! If you use Mercurial and have a BitBucket account, it would be great if you could fork the project, commit your changes and send me a pull request. This is the easiest way for me to accept and vet community contributions.

]]> By: vecima http://www.michaelwales.com/2010/02/erkanaauth-version-2-0a/#comment-305 vecima Tue, 27 Apr 2010 17:36:48 +0000 http://www.michaelwales.com/?p=43#comment-305 I don't mean to spam up the place, but I thought I'd let you know that I implemented a get_identifer (to return the email or username) and a change_password method. I posted about it here: http://codeigniter.com/forums/viewthread/144518/ Also, I'm not sure if it's a bug or just something up with the way I'm using ErkanaAuth, but I have a library called Auth_wrapper that loads ErkanaAuth, and the first time I tried to log in, I got an error about a call on an undefined object in validate_login. I added a check that the CI_Session class exists (as you did in other methods) and it seems to have fixed it: if (!class_exists('CI_Session')) { $this->CI->load->library('session'); } I don’t mean to spam up the place, but I thought I’d let you know that I implemented a get_identifer (to return the email or username) and a change_password method. I posted about it here:
http://codeigniter.com/forums/viewthread/144518/

Also, I’m not sure if it’s a bug or just something up with the way I’m using ErkanaAuth, but I have a library called Auth_wrapper that loads ErkanaAuth, and the first time I tried to log in, I got an error about a call on an undefined object in validate_login. I added a check that the CI_Session class exists (as you did in other methods) and it seems to have fixed it:

if (!class_exists(‘CI_Session’)) {
$this->CI->load->library(‘session’);
}

]]> By: vecima http://www.michaelwales.com/2010/02/erkanaauth-version-2-0a/#comment-304 vecima Tue, 27 Apr 2010 15:57:01 +0000 http://www.michaelwales.com/?p=43#comment-304 Thanks for the quick reply. Luckily in my case I don't need a feature rich authentication system. Just a simple, secure login that I can easily fit into my existing site - and you've already provided that! In the time since my first post I've gotten it working on my localhost. I'll probably go production later tonight. Thanks again! (ps - just noticed the phrase "whom which" in my first post... I don't know what a whom which is, but it sounds delicious!) Thanks for the quick reply. Luckily in my case I don’t need a feature rich authentication system. Just a simple, secure login that I can easily fit into my existing site – and you’ve already provided that! In the time since my first post I’ve gotten it working on my localhost. I’ll probably go production later tonight.

Thanks again!

(ps – just noticed the phrase “whom which” in my first post… I don’t know what a whom which is, but it sounds delicious!)

]]>