SUMO Access Manager is a security system for PHP Web applications that can be added using only one line of code. Administrators can manage authentication and authorization for users, groups, and security policies with easy, all through an intuitive Web based interface. You can create users that can authenticate their password via LDAP, MySQL internal users, MySQL/PostgreSQL/Oracle generic users tables, and via Google Mail account.
Secure PHP HTML parser and filter is a PHP package that can be used to parse and filter out insecure HTML tags and CSS styles. It comes with a general purpose markup parser class that can parse any type of markup documents similar to HTML, XML, and DTD files. It also includes several other classes that can be chained together to retrieve the document token elements returned by the main markup parser class and filter the document elements in a useful way. The markup validator filter class validates a document against a DTD, eventually removing invalid tags and attributes. The safe HTML filter class uses several white lists to process HTML tags and data returned by the markup validator class and discards potentially harmful HTML tags and CSS that could be used to perform cross-site scripting (XSS) or cross-site request forgery (CSRF) security attacks. The filtered HTML tokens can be reassembled to return a well-formed and secure HTML document. The HTML links filter class can extract the links contained in an HTML document. The DTD parser and CSS parser are utility classes used by the other classes.
Shift8 provides a simple mechanism for using the AJAM Asterisk interface in PHP. Apart from the obvious reason of providing an easy way to talk with a remote Asterisk server, the main benefit of having an intermediate library between your software and an Asterisk server is mostly that you can isolate the remote Asterisk, protecting the credentials and the entire PBX.
Simple Login Class is a PHP class that can be used to prevent unauthorized access of Web pages. A simple user management system can be implemented with this class very quickly. It does not use databases or database queries to store the user details. Instead of a database, it uses a text file to store the details. An access encoding technique (Base64), two hashing techniques (SHA1 and MD5), an a built-in PHP function (StrRev) are used here to store passwords more securely in the text file. Simple Login Class can be used in any PHP page just by embedding a snippet at the top of a the page to be protected. Any number of user logins can be stored more securely in a single file. The sessions are handled more safely in this system than some other login systems. The user registration system applied here is simplified. In certain cases, no configuration is needed to use this class.