OP 29 July, 2024 - 12:14 PM
PHP Admin Login and Register System
This project is a fully functional PHP-based login and registration system for administrators. It incorporates robust security measures and features a modern, futuristic theme.
Features
- **User Registration**: Allows new administrators to register by providing a username, email, and password.
- **User Login**: Allows administrators to log in with their credentials.
- **Secure**: Protects against common web vulnerabilities such as SQL injection and Cross-Site Scripting (XSS).
- **Modern Design**: Features a sleek, cyberpunk-inspired design for a futuristic look.
Security Measures
1. **SQL Injection Prevention**: Uses prepared statements to ensure that user input is safely handled.
2. **Cross-Site Scripting (XSS) Protection**: Utilizes `htmlspecialchars` to escape user input before outputting it to the browser.
3. **Password Hashing**: Passwords are securely hashed using `password_hash` before being stored in the database.
4. **Session Security**: Regenerates session IDs to prevent session fixation attacks and includes secure session management practices.
5. **Content Security Policy (CSP)**: Enforces a strict CSP to mitigate the risk of XSS attacks.
6. **Additional Security Headers**: Includes headers like `X-Frame-Options`, `X-Content-Type-Options`, and `X-XSS-Protection` to enhance security.
Screenshots
Registration Page
![[Image: Screenshot_2.png]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fraw.githubusercontent.com%2FDucratif%2Flogin_register_theme_pink%2Fmain%2FScreenshot_2.png)
Login Page
![[Image: Screenshot_1.png]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fraw.githubusercontent.com%2FDucratif%2Flogin_register_theme_pink%2Fmain%2FScreenshot_1.png)
This project is a fully functional PHP-based login and registration system for administrators. It incorporates robust security measures and features a modern, futuristic theme.
Features
- **User Registration**: Allows new administrators to register by providing a username, email, and password.
- **User Login**: Allows administrators to log in with their credentials.
- **Secure**: Protects against common web vulnerabilities such as SQL injection and Cross-Site Scripting (XSS).
- **Modern Design**: Features a sleek, cyberpunk-inspired design for a futuristic look.
Security Measures
1. **SQL Injection Prevention**: Uses prepared statements to ensure that user input is safely handled.
2. **Cross-Site Scripting (XSS) Protection**: Utilizes `htmlspecialchars` to escape user input before outputting it to the browser.
3. **Password Hashing**: Passwords are securely hashed using `password_hash` before being stored in the database.
4. **Session Security**: Regenerates session IDs to prevent session fixation attacks and includes secure session management practices.
5. **Content Security Policy (CSP)**: Enforces a strict CSP to mitigate the risk of XSS attacks.
6. **Additional Security Headers**: Includes headers like `X-Frame-Options`, `X-Content-Type-Options`, and `X-XSS-Protection` to enhance security.
Screenshots
Registration Page
Login Page
![[Image: rNHNlbr.gif]](https://i.imgur.com/rNHNlbr.gif)
![[Image: dPzkvQ6.gif]](https://i.imgur.com/dPzkvQ6.gif)
![[Image: dwo70n5.jpg]](https://external-content.duckduckgo.com/iu/?u=https%3A%2F%2Fi.hizliresim.com%2Fdwo70n5.jpg)