Nicely done. That's the simplest explaination of the PHPBB3 login integration that I have heard so far.

Pete

Great article. I started off with this and made my own little amendments. I am primarily a .net developer, looking to add a bit of integration with phpbb3, but this should keep it universal. Apologies for any PHP mistakes.

I started with ucp.php and made a new page called custom_login.php.

This takes the form parameters as mentioned in your previous article, excluding the redirect one. They are then processed and XML is returned of a user element. If the login fails, the guest user is returned. All you need to do is check the is_registered node to check for an unsuccessful login.

I also took the login_box() function from functions.php and included this on custom_login.php.

I havent included any is_admin functionality, or login attempts. This could be added though by looking at the login_box() function.

Well, anyway, the code is as follows....

<?php
header("Content-type: text/xml");

define('IN_PHPBB', true);
$phpbb_root_path = (defined('PHPBB_ROOT_PATH')) ? PHPBB_ROOT_PATH : './';
$phpEx = substr(strrchr(__FILE__, '.'), 1);
require($phpbb_root_path . 'common.' . $phpEx);
require($phpbb_root_path . 'includes/functions_user.' . $phpEx);
require($phpbb_root_path . 'includes/functions_module.' . $phpEx);

$mode = request_var('mode', '');

if ($mode == 'login' || $mode == 'logout')
{
define('IN_LOGIN', true);
}

$user->session_begin();
$auth->acl($user->data);
$user->setup('ucp');

switch ($mode)
{
case 'login':
if (!$user->data['is_registered'])
{
custom_login_box(request_var('redirect', "index.$phpEx"));
}


$xml_output = "<?xml version=\"1.0\" encoding=\"utf-8\"?>\n";
$xml_output .= "<user>\n";

foreach ($user->data as $attrib => $val)
{
if(!$val )
{
$xml_output .= " <".$attrib.">NULL</".$attrib.">\n";
}
else
{
$xml_output .= " <".$attrib.">".$val."</".$attrib.">\n";
}
}

$xml_output .= "</user>";



echo $xml_output;

break;

case 'logout':
if ($user->data['user_id'] != ANONYMOUS && isset($_GET['sid']) && !is_array($_GET['sid']) && $_GET['sid'] === $user->session_id)
{
$user->session_kill();
$user->session_begin();
echo "logged out";
}
break;

case 'delete_cookies':

$set_time = time() - 31536000;

foreach ($_COOKIE as $cookie_name => $cookie_data)
{
$cookie_name = str_replace($config['cookie_name'] . '_', '', $cookie_name);

// Polls are stored as {cookie_name}_poll_{topic_id}, cookie_name_ got removed, therefore checking for poll_
if (strpos($cookie_name, 'poll_') !== 0)
{
$user->set_cookie($cookie_name, '', $set_time);
}
}

$user->set_cookie('track', '', $set_time);
$user->set_cookie('u', '', $set_time);
$user->set_cookie('k', '', $set_time);
$user->set_cookie('sid', '', $set_time);

$user->session_kill();
$user->session_begin();
break;
}

function custom_login_box()
{
global $db, $user, $template, $auth, $phpEx, $phpbb_root_path, $config;

if (empty($user->lang))
{
$user->setup();
}

if (isset($_POST['login']))
{
$password = request_var('password', '', true);
$username = request_var('username', '', true);

$auth->login($username, $password, $autologin, $viewonline, $admin);
}
}
?>

So all you need to do is point your login form at that. It logs into phpbb, and from the resultant xml, you can login on your site, and pull the session_id to perhaps append to the forum urls if need be.

Let me know if you think anything could be changed!

Cheers

Mike

Thanks! Very helpful article! I'd gotten halfway there on my own, but was getting stuck. Looking forward to trying your code tonight.

So I can add this into my HTML website code and it will work? Or do I need a certain type of format to work.

Where would the class for user data be held? I'm wondering because I want to echo out the User information such as Name, Avatar, Rank, and a link to the profile settings page.

Hi there, the first article you wrote I was able to follow easily. However, I'm not very good with PHP, so I'm afraid I don't know what to do with this code. I do have a phpBB3 forum installed, so I'm able to successfully log in, but this code stumps me, so any help at all that you could provide me with would be greatly appreciated.

[phpBB Debug] PHP Notice: in file /includes/session.php on line 916: Cannot modify header information - headers already sent by (output started at /home/public_html/index.php:4)

I get this error three times with just the first block of code, after changing my directory. Everything works fine until I clear my cookies. Once I visit my forums again (even without logging in) it goes away. Does this mean a global is already declared or something?

Woooooow! This is just what I needed. THANKS!

[b]SPOT ON ![/]

I'm writing a membership renewal routine for my rowing club and I'd already coded and tested the base routines outside phpbb3.

It took me about 10 minutes to add this code at the top of my php and has allowed me to move on to the next step of accessing system variables for DB updates etc.
Now all I have to do is the ugly bit of actually making my routines 'plug-in' to phpbb3 - but that's another story ;)

Thanks very much.

For some reason it is unable to get the session from a script that is run one folder above this. I have the index.php in the root folder and the phpBB installation in a folder "forum" under this. I changed the path '/PATH/TO/FORUMS' to the correct folder and it doesn't work for me. I notice that the forum urls have a variable sid which gets passed to each other. When I pass the same in my index.php?sid=blah, I get the user information.

Any help is appreciated.

I can't quite get this to work. Where do I put the "is_registered"? If I put it last my system hangs on the "includes" and if I put it first it will ofc say "User not logged in" at first, but it still says the same when I log in.

Tom,

I agree with your thought. I do not see that phpBB uses the php sessions at all. So unless you are doing everything inside phpBB's framework, we don't have it available outside. One way is to push session_start() in the index.php and have the $user object within the session. Don't know how much of a mess up it'll do to the security

I don't remember the URL but do google for MediaWiki phpBB integration and another once called Thyme. See if they help you - and if you find them useful, appreciate if you could leave a word here.

Hello, I am getting several errors that I believe are attributed to security on my hosts side. If anyone knows of a workaround please let me know. I am fairly new to php so the simplest terms would be appreciated.

Errors:

Warning: include(common.php) [function.include]: failed to open stream: No such file or directory in /home/rxp/public_html/index.php on line 372

Warning: include(common.php) [function.include]: failed to open stream: No such file or directory in /home/rxp/public_html/index.php on line 372

Warning: include() [function.include]: Failed opening 'common.php' for inclusion (include_path='.:/usr/lib/php:/usr/local/lib/php') in /home/rxp/public_html/index.php on line 372

Warning: include(includes/functions_display.php) [function.include]: failed to open stream: No such file or directory in /home/rxp/public_html/index.php on line 373

Warning: include(includes/functions_display.php) [function.include]: failed to open stream: No such file or directory in /home/rxp/public_html/index.php on line 373

Warning: include() [function.include]: Failed opening 'includes/functions_display.php' for inclusion (include_path='.:/usr/lib/php:/usr/local/lib/php') in /home/rxp/public_html/index.php on line 373


code:

<?php define('IN_PHPBB', true);
$phpbb_root_path = (defined('PHPBB_ROOT_PATH')) ? PHPBB_ROOT_PATH : 'http://www.rxpgaming.com/forums/';
$phpEx = substr(strrchr(__FILE__, '.'), 1);
include($phpbb_root_path . 'common.' . $phpEx);
include($phpbb_root_path . 'includes/functions_display.' . $phpEx);
// Start session management
$user->session_begin();
$auth->acl($user->data);
foreach ($user->data as $sess => $val)
{
if(!$val )
{
print($sess ."=> NULL");
}
else
{
print($sess ."=>".$val);
}
print("<br />
");
}
?>

I was glad to find this information, however I have one problem. What I want to do is have a link-forum on the index page that will take you to a php links page, where users can add links of their own. So, I want to keep it as a part of the phpBB forums, using the current logged in values. So from the index page of phpBB there is a link that goes to "links.php". I have done exactly as you have instructed so far in my links.php script, but when I view the user information array, it says that the user is not logged in and that the username is anonymous. When I go back to the phpBB page, i am still logged in though...do you have any idea what is happening here and how I can fix it?