I am currently developing a small internal PHP application which requires login. The credentials

Question

0

Asked: June 7, 20262026-06-07T06:32:34+00:00 2026-06-07T06:32:34+00:00

I am currently developing a small internal PHP application which requires login. The credentials

0

I am currently developing a small internal PHP application which requires login. The credentials will be authenticated using LDAP, but I am wondering how secure it is to pass the AD username and password through a form?

Authentication page code:

    <?php

// using ldap bind
$ldaprdn  = $_POST['username'];
$ldappass = $_POST['password'];
// connect to ldap server
$ldapconn = ldap_connect("SERVERNAME")
    or die("Could not connect to LDAP server.");

if ($ldapconn) {

    // binding to ldap server
    $ldapbind = ldap_bind($ldapconn, $ldaprdn, $ldappass);

    // verify binding
    if ($ldapbind) {
        echo "LDAP bind successful...";
    } else {
        echo "LDAP bind failed...";
    }

}

?>

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-07T06:32:36+00:00

Editorial Team

2026-06-07T06:32:36+00:00Added an answer on June 7, 2026 at 6:32 am

Use

https
Post/Redirect/Get
Make sure your utility is not connected to the Internet, only your intranet
CSRF Protection
Don’t store this information in cookies, files, etc.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I am currently developing a small internal PHP application which requires login. The credentials

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply