The PHP Secure Stateless Cookies Class lets you create a system that authenticates with secure cookies instead of using PHP sessions. Furthermore, it allows for:
- Secure password hashing
- Secure cookie hashing
- Automatically updates md5 passwords
- Can interpret PHPass hashes without changing your current user database
Check out the documentation for code samples and usage.
There is quite a bit of discussion between stateful and stateless. For a better understanding of stateless cookies and stateless PHP applications, consider reading the article Hardened Stateless Session Cookies (PDF) by Steven J. Murdoch.
- (12.05.2012) v1.0
- Release version