The Bakery Everything CakePHP

Http Client Class
Uses Pear or Curl for a HTTP/HTTPS GET/POST request. Handles cookies and HTTP auth test

Authenticate your users and secure your controller actions from users belonging to certain groups. Or simply secure your controller actions to let any authenticated user to access it.

How to use: http://bakery.cakephp.org/articles/view/121

Some features:
1. User authentication
2. User groups supported
3. Protect action access with 1 line of code

the long awaited documentation of othAuth, this article covers the new version of othAuth 0.5

This tutorial shows you how to create a simple authentication system that doesn't send passwords in cleartext (as many others do). It has a fallback for non-JavaScript users (cleartext mode), and uses a user-defineable method for improved security for the storage of passwords.

This article introduces dAuth V0.3: the authentication (not authorisation) system with a focus on security, using techniques such as challenge-response, customizable multiple-stage password hashing, brute force (hammering) detection etc.

the component for dAuth v0.3

helper for dAuth v0.3

User, Host, LoginAttempt models for dAuth v0.3

the component part of othAuth

changes:
0.5.4.5:
- Fixed a bug that was introduced by lately, missing /
- Fixed a bug ( not really bug but oh well ) preventing othAuth from recovering a session from the cookie data in some situations
0.5.4:
- Fixed a bug in loginAttempts reported by PatDaMilla
- Added support for parameters sent via url in a traditional way, mainly for redirects, thanks to Ritesh.
- Probably some other minor bugs

0.5.3:
- Added compatibility with 1.2 redirections
0.5.2:
- Fixed a bug in getData
- Fixed a bug related to the '/' route
- Added lazy model loading support
- Hmm..maybe something else..eh
0.5.1:
added a minor modification to _passAuthData

Helper part of othAuth
changes:
0.1.2:
- Fixed another bug in getData ( wasn't calling init())
- Added support for 1.2
- Added a function hasPermission by Brett ODonnell aka cornernote

0.1.1:
- Fixed a bug in getData
- uses the session helper now

There has been a lot of questions about user authentication lately so I thought it was appropriate to create a tutorial that covered the very basics

In this tutorial we'll cover all aspects of MVC in an authentication role, logging a user in, maintaining a session, and restricting unauthorized access to controller actions.

Though this article is based on CakePHP 1.2.x, the same concepts apply in 1.1.x and most of the code can be reused.

A simple but powerful Cake Auth Component

This is a tutorial on how to use obAuth component: http://bakery.cakephp.org/articles/view/130

This component follows the traditional way of acl only slightly modifying it. In example there's an inheritance feature, which will help tremendously the access controlling because you don't have to specify every action in aros_acos-table.

This is my implementation of a simple Ticket Component. A ticket is a way to store a piece of data that can be retrieved and used once. The typical example of this would be a feature to reset user passwords. You need to open that function to a non-secure session. By using a ticket you limit the danger to a more reasonable level. Read on and I will explain...