It has the following features:
- Licensed Under GPLv3
- Full XHTML 1.0 Strict Conformity
- Full CSS 2.1 Conformity
- OOP (Object-oriented programming)
- RBAC (Role Based Access Control)
- MVC (Model-View-Controller) Design Pattern
- Singleton Design Pattern
- Designed for PHP5+ (Uses PDO)
- Strict IO (Input/Output) Validation
- Supports Mysql or any PDO driver supported database (still untested)
- Custom Session Handling With Idle Session Expiration & Session Identifiers Regeneration
- User Account Locking With Both Automatic & Manual Unlocking Methods
- Login Attempts & Session Event Logging
- Per Action Optional SSL/TLS (Transport Layer Security) Enforcement
- Password Aging/Expiration
- Support for "secure" (When run over SSL/TLS) AND "httponly" Cookies
- Improved CSRF (Cross Site Request Forgery) Protection By Using Random Protection Tokens
- Support for all PHP5 Hashing Algorithms as well as MySQL's AES and DES Encryption
- Additional CSRF and Bot Protection using Optional CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart) Images
- Optional Session Data Storage Encryption
- Optional Session IP Checking (Prevents Session Hijacking)
README | REQUIRES
Test Drive >>>
