Cake3-CookieAuth
Cake3-CookieAuth copied to clipboard
Xety
A simple Cake 3 plugin to automatically authenticate users with Cookies.
Security
I thought it was worth mentioning that storing the username and password in the cookie is a huge security risk. You should be using a hash of some description saved...
Currently, this package's version constraint for PHPUnit (4.*) allows for CakePHP 3.4.1 but not any newer versions, as CakePHP 3.4.2 requires PHPUnit >=5.7.
This is how I have setup my AppController.php, but it is giving error ```
This enhancement allows authentication using an external provider such as LDAP, and still be able to log in using a cookie without storing the password.
I user LDAP for authentication, so I don't store passwords in my users table. ``` php // after authentication by LDAP $this->Cookie->write('CookieAuth', [ 'username' => $this->request->data('username'), 'password' => null ]);...