Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
Am about to include a log in system to my web Site but i don’t think it’s a good idea for security to use ajax to send a and receive confirmation from an external php script called login.php
and log-out the same way with another logout.php
any recommendation
I can’t think of any security implications on using Ajax to handle login and logout. It doesn’t matter what you send back and forth (as long as you don’t send plain text passwords from server to client) between the ajax and sever side layer, because the session will be the one which will hold the authorization state.
However, you would still have to refresh the page, or redirect to show the appropriate content to the just authorized user. So, I don’t think Ajax is going to be effective at this particular situation.