XF 2.2 Authenticating to XF from standalone php app

C

chris p

Member
Hello. Is there a recommended way to allow a standalone php application, running on the same server as our XF instance, to use the authentication from the XF user database?

We have an application we want to carry forward to the new forum site, but it has no relationship to the forums (separate database schema). As it is a data entry application, we would like to only permit access to our XF users. In the past, this application looked for the presence of the phpbb2 login cookie which was extremely easy to circumvent of course. I would like to shirttail this application onto the XF instance for authentication purposes. I had considered making it an addon, but it really has nothing to do with XF and that seems like I'd be creating a more complex support issue for those who have to maintain it. I presume that people may have addressed this with wordpress and other applications and wondered how.
 
Solution
gigipmc
In theory, you can load XF inside your application and authenticate. If loading XF isn't easy due to code conflicts, you can use the authentication code from the XF codebase inside your app, and authenticate against the XF database. In practice, your programmer may have to iron out a few issues for this to work properly.

It's probably smarter to just use the XF API to test a username and password for validity: https://xenforo.com/community/pages/api-endpoints/#route_post_auth_

You can call the API with curl and authenticate the users based on the response.
Sort by date Sort by votes
In theory, you can load XF inside your application and authenticate. If loading XF isn't easy due to code conflicts, you can use the authentication code from the XF codebase inside your app, and authenticate against the XF database. In practice, your programmer may have to iron out a few issues for this to work properly.

It's probably smarter to just use the XF API to test a username and password for validity: https://xenforo.com/community/pages/api-endpoints/#route_post_auth_

You can call the API with curl and authenticate the users based on the response.
 
Last edited:
Upvote 0 Downvote
Solution
gigipmc said:
In theory, you can load XF inside your application and authenticate. If loading XF isn't possible due to code conflicts, you can use the authentication code from the XF codebase inside your app, and authenticate against the XF database. In practice, your programmer may have to iron out a few issues for this to work properly.

It's probably smarter to just use the XF API to test a username and password for validity: https://xenforo.com/community/pages/api-endpoints/#route_post_auth_

You can call the API with curl and authenticate the users based on the response.
Click to expand...
Thank you very much. I wasn't aware of the API. It sounds like exactly what I need.
 
Upvote 0 Downvote
You must log in or register to reply here.

Similar threads

Tom Nunamaker
Need help building an auto login to XF from my member website
Replies
0
Views
291
Tom Nunamaker
Tom Nunamaker
X
  • Question Question
Fastest way to migrate to XF from vB4?
Replies
4
Views
1K
CarpCharacin
C
X
  • Question Question
Any chance of SEO being affected due to moving to XF from vB?
Replies
3
Views
840
XYZ500
X
Dan Allen
Registering and Signing in to XF from a php program
Replies
17
Views
2K
Dan Allen
Dan Allen
S
  • Question Question
converting to xf from ipb 4
Replies
13
Views
2K
Kev Collins
Kev Collins
Top Bottom