Single sign-on Ucenter example analysis_PHP tutorial

First, let’s learn about the Ucenter login steps

1. The user logs in to discuz and verifies the posted data through the function uc_user_login in the logging.php file, that is, verifying the username and password.
2. If the verification is successful, the function uc_user_synlogin located in the client.php file under uc_client will be called. In this function, uc_api_post('user', 'synlogin', array('uid'=>$uid)) will be called. .
3. Then this function passes data to index.php of Ucenter. Index.php accepts the passed data and obtains the value of model as user and action as synlogin.
4. Then Ucenter’s index.php calls the onsynlogin method in the user.php class in the control directory. Through the foreach loop, it uses JavaScript to notify the applications in the uc application list that enable synchronous login to log in synchronously; that is, through get method to pass some data to uc.php under the api in each application directory.
5. uc.php receives the notification and processes the data obtained, and encrypts the data through the function _authcode in the function synlogin (located in uc.php) (default uses UC_KEY as the key), and sets the cookie with the function _setcookie.
6. Each application uses the corresponding key to decode the cookie set above and obtain the user ID and other data; use this value to determine whether the user has logged in through other applications, so that the user can log in automatically.

Logging.php in application ------>client.php in uc_client------>Ucenter------>api/uc in application. php

In fact, the principle of Ucenter to achieve synchronous login is cookie. After an application successfully logs in, it transfers data to Ucenter and allows Ucenter to notify other applications to also set cookies, so that users can set cookies when accessing other applications. Cookie to achieve automatic login. After understanding the synchronization principle of Ucenter, it will be much easier when you encounter problems with synchronous login or developing some interfaces with UCenter.

General steps: First, we need to install ucenter and then copy the uc_client folder to our own project, and then configure several files

client.php is equivalent to a function library

uc.php is equivalent to the callback file

There is also a config.inc.php which is the configuration file

When you have two applications that have set up synchronous login, when you log in to one application Then execute

Copy code The code is as follows:

include './config.inc.php';
include ' ./uc_client/client.php';
$usernames="feiye";
$passwords="789123";
list($uid, $username, $password, $email) = uc_user_login($ usernames, $passwords);
if($uid > 0) {
setcookie("username",$username,time()+intval(24*3600));
echo uc_user_synlogin($uid );
echo 'Login successful';
} elseif($uid == -1) {
echo 'The user does not exist or has been deleted';
} elseif($uid == - 2) {
echo 'Wrong password';
} else {
echo 'Undefined';
}

uc_user_synlogin() This function represents synchronous login When it comes to all other functions that enable synchronous login, uc will loop through all the applications that enable synchronous login in the background and then output

on the page. Copy code The code is as follows:

Copy code The code is as follows:

< ;script type="text/javascript" src="http://127.0.0.71/api/uc.php?time=1374540644&code=07a91g8SepQwwfA3C1uN1sPhC4v6yuER1jFbVTQMK%2BQZmTkjwOz8X%2B8rWgNmKdhlXe9XXVQqAkDjN 26CK6BMA19ZpLoiSW4wuNnxHAB9xXLt2VExuyf03MnEHAC%2BUdjwb58sbXGcYUpM4Bmzdm3Q92ObSp0Kk2qCd12fqg" reload="1">

JS code like this is sent to each application that turns on synchronous login. Then the callback file uc.php of each application that turns on synchronous login will be decrypted after receiving it. After decryption, you actually You can write the code yourself. The code of this uc.php callback file does not have to be written in their format. You can also write your own code. For example, I do synchronous login based on session

Copy code The code is as follows:

function synlogin($get, $post) {
$uid = $get['uid'];
$username = $get['username'];
if(! API_SYNLOGIN) {
return API_RETURN_FORBIDDEN;
}
header('P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"');
setcookie('gwyy',$username,time()+3600,'/','127.0.0.71');
_setcookie('Example_auth', _authcode($uid."t".$username, 'ENCODE' ));

$_SESSION['username'] = $username;
$_SESSION['uid'] = $uid;
}

function synlogout($get, $post) {
if(!API_SYNLOGOUT) {
return API_RETURN_FORBIDDEN;
}
//note Synchronous logout API interface
header('P3P: CP="CURa ADMa DEVa PSAo PSDo OUR BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"');
_setcookie('Example_auth', '', -86400 * 365);
unset($_SESSION['username']);
unset($_SESSION['uid']);
session_destroy();
}

In this way, the user will automatically log in after refreshing other application pages

Note that if you add an application prompt in UC and the communication fails, the reason is simply that your http://xxxx/api/uc.php file is not found. As long as this file is there, the communication will definitely be successful

In fact, the principle of UC is very simple. After an application logs in, it then polls the callback file sent to the synchronously logged-in application in the background. After the callback file receives the user ID, it generates a cookie or session and then enters the login mode.

http://www.bkjia.com/PHPjc/824962.htmlwww.bkjia.comtruehttp: //www.bkjia.com/PHPjc/824962.htmlTechArticleFirst of all, let’s understand the Ucenter login steps 1. The user logs in to discuz through the function uc_user_login in the logging.php file Verify the posted data, that is, username and p...