Xavier – PHP 登录脚本和用户管理管理面板

Xavier PHP 登录脚本是一个用户管理登录脚本 使用后端管理面板，您可以通过在页面顶部放置几行代码来轻松保护网页或网页内的内容。

该脚本可以轻松放入现有网站，允许您通过在页面顶部添加一行 PHP 代码来保护页面。您还可以保护页面的各个部分。保护您的网页或内容部分取决于您的用户是登录还是注销，或者他们是否是用户组的成员。或者，根据您是否以管理员身份登录来保护您的页面。脚本中包含的示例页面和脚本（登录、注册、忘记密码等）可以自定义以在您自己的网站中使用，也可以整齐地适应您现有的网站。

管理面板允许您管理用户并更改各种站点设置。作为管理员，您可以添加、编辑、禁止或删除用户或用户组。它建立在 Bootstrap 之上，并且是高度可定制的。

主要特点

• 可以放入现有网站或“开箱即用”使用。
• 按登录状态、组状态和/或组级别状态保护您网站的页面或页面部分。
• 可选的验证码（和其他故障保护装置）以避免注册自动机器人。
• 用户使用 PHP 会话登录，跨页面导航并保持登录状态。
• 完整的日志记录设施。
• 查看单个登录会话和详细信息。精细信息。
• 具有可选级别的用户组。
• 将普通用户提升为具有某些管理功能的管理员。
• 用户在不活动后超时。
• 独特的用户主页。
• 用户可以更改配置文件设置、更改密码、电子邮件地址。
• 忘记密码功能。
• 可选的管理员或电子邮件激活。
• 可选的欢迎电子邮件。
• 管理员可以添加、激活、禁止、编辑或删除用户。
• 查看和显示活动用户。
• 记录用户的注册日期、上次登录日期和IP地址。
• 记录有史以来最多的在线用户。
• 密码使用 BCRYPT 单独散列和加盐。
• 更改最小/最大用户名或密码长度。
• 注册时确认密码和电子邮件地址。
• 使用 Bootstrap CSS 的可自定义管理皮肤
• 关闭/打开从同一帐户进行多次登录。
• 还有更多……

演示

尝试在线演示 这里 在愤怒的青蛙网站上。以管理员身份登录，用户名：admin / 密码：P4ssw0rd

支持

作者提供支持。如果您对脚本有任何问题，请单击支持选项卡并给我们发送电子邮件，或者您可以在评论部分发布任何一般查询或观察结果。脚本还提供了详细说明。

更新

版本 3.2.4

[Fixed] PHP 8.2: Added ` to MySQL Reserved Words
[Updated] Functions.php in Includes folder (added ` to every reference of group or groups table names)
[Updated] adminproces.php in Includes folder (added ` to every reference of group or groups table names)

版本 3.2.3

[Fixed] PHP 8.2: Dynamic Properties are deprecated - declared properties at top of classes
[Updated] Registration.php (declared properties at top of class)
[Updated] Session.php (declared properties at top of class)
[Updated] Adminfunctions.php (declared properties at top of class)
[Updated] Login.php (declared properties at top of class)

版本 3.2.1

[Fixed] Updated login issue - changed session.php file

v 3.2

[Fixed] Updated IPV6 issue in database, increased varchar to 49 characters.
[Fixed] Issue with User Groups. Updated editGroup function in adminprocess.php file.
[Updated] Session.php - added : to binded values to work with PHP v8 (eg, WHERE :session_id)
[Fixed] $this->session->updateActiveUsers($this->username) to ($this->id) in Login.php
[Fixed] Chart on front page of Admin Panel shows correctly.
[Updated] to jQuery 3.6.0

第 3.1.5 节

[Changes] Added PHPMailer so that mail handling is improved.
[Updated] Added PHPMailer.php and Exception.php to Admin/Includes folder
[Updated] Edited/Updated Mailer.php page

3.1节

[Fixed] Updated index.php sql query at bottom of page (around line 287) to prevent error caused when sql mode  ONLY_FULL_GROUP_BY is turned on.
[Fixed] Updated Functions.php page (line 301) to allow isMemberOfGroup function to work.
[Fixed] Please add default value of 0 to timestamp column in user_sessions table to prevent error caused when SQL STRICT mode is turned on.

v 3.0

[Changes] Re-design of how User Sessions are handled.
[Changes] Improved 'Remember Me' cookie handling - More secure
[Changes] Improved User Password Reset feature - More secure
[Changes] Multiple login from one account enabled - turn on/off
[Updated] New tables in database - 'user_session' and 'user_temp'
[Updated] Change to Users table - removed 'actkey' and 'userid' columns
[Updated] Change to Configurations table - added 'ALLOW_MULTI_LOGONS' and 'PERSIST_NOT_EXPIRE' columns
[Updated] Introduced Google reCaptcha
[Fixed] Admin User Creation - better error handling of form fields

2.5节

[Changes] Updated hash algorithm to BCRYPT
[Updated] Multiple file changes to accomodate new password hash
[Updated] Removed references to usersalt and dropped column from Users table
[Updated] Changed password hashing function to password_hash and password verify functions.
[Updated] Tidied up code.

第 2.4.1 节

[fixed] Problem not being able to change user password
[Changes] Banned User is now kicked from session whilst logged on
[Updated] Changed admin/login.php page to make it clearer that it is only for admin logins

2.4节

[Changes] Allow logon with e-mail address
[Changes] No longer allowed duplicate email addresses - option removed from admin panel (and database)
[Changes] Admin Registration Summary page gives better error info on unsuccessful admin registration
[Updated] Updated Database - removed ALLOW_DUPE_EMAIL column from configuration table

2.3节

[Updated] - Added SHA256 hash algorithm for hashing user passwords.

2.2.1 节

[fixed] Could not change user details correctly when 'Allow Duplicate Email' is Off
[Updated] admin/includes/Adminfunctions.php - Updated adminEditAccount function

v 2.2.0

Added Logging and other small fixes.

第 2.1.0 版

Added Unique User Home Pages - Pages users are sent to after initial login. This can be set by the admin or individually for each user.

第 2 节

New Release - complete update and redesign of the admin GUI with lots of improvements. Folder structure changes. No database changes.

v1.1.2

Fixed isMemberOfGroup function
Change where site redirects to after login. <strong>Database update is required!);</strong> Run this SQL on your database - INSERT INTO `configuration` (`config_name`, `config_value`) VALUES ('login_page', 'index.php');

第 1.1.1 节

Fixed Bug - removing user from all groups.

1.1.0 版

Added User Groups.
Made improvements to the banning system.
Added ability to promote regular users to admin, who then have limited admin permissions.
Fixed some bugs.