Skip to content
Permalink
Newer
Older
100644 65 lines (61 sloc) 2.4 KB
1
<?php
2
defined('APP_DIR') or define('APP_DIR', __DIR__ . '/../app/');
3
include_once(APP_DIR . 'model/User.php');
4
include_once(APP_DIR . 'include/http.php');
5
6
$data = User::authenticated();
7
if (!$data) {
8
Http::redirect('index.php');
9
}
10
11
include 'template/header.html';
12
include 'template/user_menu_button.php';
13
?>
14
15
<div class="row user-container">
16
<div class="col s8 offset-s2">
17
<h1> Welcome, <?php echo $data->username ?>! </h1> <br />
18
<h5> Here's a bit of interesting information about this site... </h5> <br />
19
<ul class="collapsible" data-collapsible="accordion">
20
<li>
21
<div class="collapsible-header">
22
<i class="material-icons">lock_outline</i>
23
User authentication
24
</div>
25
<div class="collapsible-body">
26
<span>
27
Users are authenticated with this website using <a href="https://jwt.io/">JWT</a>
28
tokens which are generated server-side. Upon signing in, a user is given a unique
29
token containing non-sensitive user information which is stored client-side as a
30
browser cookie.
31
</span>
32
</div>
33
</li>
34
<li>
35
<div class="collapsible-header">
36
<i class="material-icons">vpn_key</i>
37
Password hashing
38
</div>
39
<div class="collapsible-body">
40
<span>
41
Passwords are salted and hashed server-side and stored in the
42
user database. Passwords are hashed using PHP's bcrypt algorithm.
43
</span>
44
</div>
45
</li>
46
<li>
47
<div class="collapsible-header">
48
<i class="material-icons">https</i>
49
HTTPS support
50
</div>
51
<div class="collapsible-body">
52
<span>
53
This website uses HTTPS (HTTP over SSL) to communicate between client
54
and server. All HTTP requests and responses are securely encrypted before
55
being sent. HTTPS makes use of public-key cryptography.
56
</span>
57
</div>
58
</li>
59
</ul>
60
</div>
61
</div>
62
63
<?php
64
include 'template/footer.html';
65
?>
You can’t perform that action at this time.