The project is a standard Login page. It must use my existing database structure (provided) and it must have certain functions like counting how many attempts, prevention of sql injection techniques, set cookie to remember logins, cancel cookie, and route users to success page upon validation. Once validated, it should retrieve values from two database tables and print those values out on the screen.
1) Complete and fully-functional working program(s) in executable form as well as complete source code of all work done.
2) Deliverables must be in ready-to-run condition, as follows (depending on the nature of the deliverables):
a) For web sites or other server-side deliverables intended to only ever exist in one place in the Buyer's environment--Deliverables must be installed by the Seller in ready-to-run condition in the Buyer's environment.
b) For all others including desktop software or software the buyer intends to distribute: A software installation package that will install the software in ready-to-run condition on the platform(s) specified in this bid request.
3) All deliverables will be considered "work made for hire" under U.S. Copyright law. Buyer will receive exclusive and complete copyrights to all work purchased. (No GPL, GNU, 3rd party components, etc. unless all copyright ramifications are explained AND AGREED TO by the buyer on the site per the coder's Seller Legal Agreement).
In addition it must match these specifications: Application Login I need a login page built in PHP with a MySQL backend. I have the database structure already in place. This structure cannot change. A user needs to be able to input their last name and password and have the application check the database to verify that the user has access to a page. If the user is authenticated, then the application needs to pass some user information (see [url removed, login to view] to learn all of the values that need to be POSTED) through POST to a page and listed out on that page (see [url removed, login to view] "Screen 4" for detailed description). In the end, this login will be used under SSL. The login script will need to allow the user the option to "remember me" by setting a cookie. If the user has selected "remember me" when they access the page again, it will not prompt them for login, but will take them directly to the forwarding page, including all of the information that is required to be sent through POST. If a user fails to enter an accurate login, the script needs to let them try for 8 times before locking them out from further trials during that session. In addition, the page will give them appropriate messages telling them they have not put in the correct information. Part of the validation of a user includes checking two flags in the database tables to make sure the user is "active" and the Company is active. If the user is inactive or the company is inactive, they will be told they are no longer allowed to access the page. The test for active is included in the attached documents. Keep in mind, if the user decides to set a cookie to "remember" their login, it must still check whether the user is still active AND the company is still active before allowing them to proceed. Passwords are stored in the database as base64 encoded. They will need to be unnencoded to compare and check their validity. On the landing page there should be a link that says: "Not USERXXXX? Click here to login". This link should clear any cookie set, and re-route the user back to the login page. See [url removed, login to view] for more information. All user input must be checked for sql injection and other attempts to hack the database Please see database structure, database sql, and screen diagrams attached to this bid to understand the full scope. Once you start work, I can supply sample data to populate the database.
This project must work in Windows XP, Vista, Mac OS, Linux, on IE 6+, Mozilla, Firefox, Opera, Konqueror, and other major browsers. It must be php 4.2+ compatible, MySql 4.1+ compatible and the code should be adequately commented in english.