Re: Re: How do they expect cookies to work (like this)??

Ok, I will try to re-ask my question so you can better understand what I am aiming for.

I want an HTML form (which asks for a username and password) to redirect back to itself and with the user/pass make a cookie. When the cookie is sent to header after it's detected, it will access semi-secure information and won't print the form anymore.

In short, I want the form to make the cookies when it returns to itself after the user information is supplied.

I have printed your snippets out and will be looking them over more extensively after work today but there are a few things I can honestly say I haven't seen before. For example the use of our.

Thanks for your help.

Comment on Re: Re: How do they expect cookies to work (like this)??

Replies are listed 'Best First'.
something like this? by cLive ;-) (Prior) on Oct 02, 2003 at 18:32 UTC
#!/usr/bin/perl use strict; use warnings; use CGI; our $q = CGI->new(); our @cookie_jar=(); our $secure_cookie = defined $q->cookie('securecookie') ? $q->cookie('securecookie') : ''; # is a valid cookie set? if ($secure_cookie) { if ( cookie_ok($secure_cookie) ) { show_secure_stuff(); } else { # invalid cookie, so delete and show form push @cookie_jar, $q->cookie( securecookie => '' ) show_form(); } } # have they just completed the form elsif ($q->param('username')) { check_login_combo(); } # first run, so show form else { show_form(); } sub show_form { # display login form here # with fields 'username' and 'password' } sub check_login_combo { # based on username, grab correct crypted password # from db/textfile and store in $stored_cryptpass # do various other error checks and re-present form # if invalid input my $user = $q->param('username'); my $pass = $q->param('password'); if ($stored_cryptpass eq crypt($pass,$stored_cryptpass) { push @cookie_jar, $q->cookie({-name=>'secure_cookie', -value=>"$user:$stored_cryptpass"}); show_secure_stuff(); } else { # bad login show_form(); } } sub cookie_ok { # do similar check on cookie my ($user,$cryptpass) = split ':', $_[0]; # grab stored_cryptpass and check return $cryptpass eq $stored_cryptpass ? 1 : 0; } sub show_secure_stuff { # display secure page here - ensuring you send the cookie print $q->header(-cookie => \@cookie_jar). 'rest of page here'; } [download] .02 cLive ;-)	[reply] [d/l]

Replies are listed 'Best First'.

something like this?
by cLive ;-) (Prior) on Oct 02, 2003 at 18:32 UTC

#!/usr/bin/perl
use strict;
use warnings;
use CGI;

our $q = CGI->new();
our @cookie_jar=();
our $secure_cookie = defined $q->cookie('securecookie')
                     ? $q->cookie('securecookie')
                     : '';

# is a valid cookie set?
if ($secure_cookie) {
    if ( cookie_ok($secure_cookie) ) {
         show_secure_stuff();
    }
    else {
        # invalid cookie, so delete and show form
        push @cookie_jar, $q->cookie( securecookie => '' )
        show_form();
    }
}

# have they just completed the form
elsif ($q->param('username')) {
    check_login_combo();
}

# first run, so show form
else {
    show_form();
}

sub show_form {
    # display login form here
    # with fields 'username' and 'password'
}

sub check_login_combo {
    # based on username, grab correct crypted password
    # from db/textfile and store in $stored_cryptpass
    # do various other error checks and re-present form
    # if invalid input
    
    my $user = $q->param('username');
    my $pass = $q->param('password');
    if ($stored_cryptpass eq crypt($pass,$stored_cryptpass) {
        push @cookie_jar,
            $q->cookie({-name=>'secure_cookie',
                        -value=>"$user:$stored_cryptpass"});
        show_secure_stuff();
    }
    else {
        # bad login
        show_form();
    }
}

sub cookie_ok {
    # do similar check on cookie
    my ($user,$cryptpass) = split ':', $_[0];

    # grab stored_cryptpass and check
    return $cryptpass eq $stored_cryptpass
           ? 1 : 0;
}

sub show_secure_stuff {
    # display secure page here - ensuring you send the cookie
    print $q->header(-cookie => \@cookie_jar).
          'rest of page here';
}
[download]

.02

cLive ;-)

[reply]
[d/l]