stackoom
  简体   繁体   中英

How can I access sql login info outside of web root

 原文  2012-12-06 03:47:07       php/ mysql/ web/ passwords/ root

Question

I'm a newbie.

I have a php script located here /var/www/check_login.php that includes sql login information in plain text. This file is accessed to verify correct user credentials by my login page /var/www/login.php via <form name="" method="post" action="check_login.php">

I'd like to store check_login.php outside of web root directory so it cannot be accessed remotely.

How would I tell login.php to access check_login.php outside of the web root directory?

I'm guessing its not as simple as action="/var/<new folder outside of root>/check_login.php

Thanks!!

5 answers

solution1
 1 ACCPTED  2012-12-06 03:59:34

将带有凭据的文件移动到一个上一级目录和文件check_login.php中

include('../credentials.php');

solution2
 1  2012-12-06 04:22:08

You're on the right track. Create a different folder for your site in /var/www. I like to do this setup: 

/var
---/www
-------/mysite
----------/html
----------/config
----------/lib

etc. In apache, I tell it my document home is

/var/www/mysite/html

and then I store any config files (like MySQL credentials or classes) in /var/www/mysite/config . Then, I can include these files with something like:

require_once("/var/www/mysite/config/mydbcreds.php")

In your example, login.php would need to call your check function in this file, and would be able to if you require it to be included. Check out my answer here on how to use a MySQL connection class that may save you some time and headaches.

solution3
 0  2012-12-06 04:15:14

Create a new page for your database connection information and move that to /var/

You can then use your HTML action="check_login.php"

and on your check_login.php script, use the solution which Gustek suggested:

include('../credentials.php');

solution4
 0  2012-12-06 04:26:07

你可以简单地使用include('path of folders/ your_ logging_data .php );

solution5
 0  2013-09-19 02:33:40

If you're on a shared hosting plan, I would simply create a new folder outside my website root and have all my non-public files in there. Then in the php.ini file for your website, I would edit the include path to include this new folder. In your .php file, simple put require("the-non-public-file.php"); at the top, ie, without the absolute path.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How can I give Drupal 8 access to config files outside the web root? How can i show the images outside the web root directory in my php application? How do I access files placed outside of the site root? Confused On Higher Web Root Access For Secure Login How can i display a image in codeigniter outside root directory How to view an image outside of web root? How to upload a file to a folder outside web root How to access files outside the document root How to access a folder outside of the document root in Yii? What does this php code mean? And how can i use it to access a web server through a login page?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM