ASSIGNMENT 2 Salim Malakouti. Ticketing Website  User submits tickets  Admins answer tickets or take appropriate actions.

Slides:

Advertisements

Similar presentations

MFA for Business Banking – Security Questions with 2nd Request Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing.

Advertisements

MFA for Business Banking – Security Code Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing these QT sheets.

MFA for Business Banking – Security Questions with Reset Multifactor Authentication: Quick Tip Sheets Note to Financial Institutions: We are providing.

Using the Self Service BMC Helpdesk

Creating an Amazon Simple Service Account. 1- Sign Up for an Amazon Account 2- Verify Sending Account or Domain 3- Send Test Message 4- Request.

Members Only & Login Modules Members Only works with the Login module to provide password protection to Web pages and files. Login Groups may be created.

Comergence 3/14/13. What Does Comergence Do? Comergence provides streamlined processing and centralized storage of Correspondent applications nationwide.

TPA Orientation Teacher Performance Assessments and Livetext.

HELP GUIDE NEW USER REGISTRATION (SLIDE 2) TAKING A QUIZ (SLIDE 8) REVIEWING A QUIZ (SLIDE 17) GROUP MEMBERSHIP (SLIDE 26) CREATING QUIZZES (SLIDE 31)

IP Address Management and Request Service Kim Huynh CS491B.

CADDLAB Medical Imaging on Remote Compute Servers.

Figure 1. Hit analysis in 2002 of database-driven web applications Hits by Category in 2002 N = 73,873 Results Reporting 27% GME 26% Research 20% Bed Availability.

Web-based Document Management System By Group 3 Xinyi Dong Matthew Downs Joshua Ferguson Sriram Gopinath Sayan Kole.

1 Web Developer & Design Foundations with XHTML Chapter 6 Key Concepts.

Joining Turnitin ® It will be required for you to submit some assignments through Turnitin.

Server-side Scripting Powering the webs favourite services.

1 PHP and MySQL. 2 Topics  Querying Data with PHP  User-Driven Querying  Writing Data with PHP and MySQL PHP and MySQL.

Creating a Web Site to Gather Data and Conduct Research.

© 2003 By Default! A Free sample background from Slide 1 Week 2  Free PHP Hosting Setup  PHP Backend  Backend Security 

Hunter Valley Amateur Beekeepers Forum User Guide Guide shows sample screenshots with most relevant actions. Website is at

Module Info Web Application and Development Digital Media Department Unit Credit Value : 4 Essential Learning time : 120 hours

COMP3121 E-Commerce Technologies Richard Henson University of Worcester November 2011.

1 OPOL Training (OrderPro Online) Prepared by Christina Van Metre Independent Educational Consultant CTO, Business Development Team © Training Version.

JavaScript – Quiz #9 Lecture Code:

In the web address box enter Enter your user ID (first and last initial 7 digit ID number) Select Log in.

Lecture 8 – Cookies & Sessions SFDV3011 – Advanced Web Development 1.

Mr. Justin “JET” Turner CSCI 3000 – Fall 2015 CRN Section A – TR 9:30-10:45 CRN – Section B – TR 5:30-6:45.

Website Development with PHP and MySQL Saving Data.

IFORM ACCOUNT MAINTENANCE ICT4D SESSION 4. IFORMBUILDER WEBSITE REQUIREMENTS To access the iFormBuilder website, you need the following items: -Reliable.

Forms and Server Side Includes. What are Forms? Forms are used to get user input We’ve all used them before. For example, ever had to sign up for courses.

Creating Databases CSS example. One-way encryption. Passwords. Security issues. Work session.. Homework: Making unique posting on encryption, passwords,

RateMyService: Lessons SANS group Milestone 2. Status Report Currently, users to our site can: Search on our site, either by browsing or by using the.

At the Log in page enter your college provided username and password then click submit to login to Owl Link.

BIT 286: Web Applications Lecture 10 : Thursday, February 5, 2015 ASP.Net Form Submission.

GOAL User Interactive Web Interface Update Pages by Club Officers Two Level of Authentication.

Mtivity Client Support System Quick start guide. Mtivity Client Support System We are very pleased to announce the launch of a new Client Support System.

 Registry itself is easy and straightforward in implementation  The objects of registry are actually complicated to store and manage  Objects of Registry.

DataFlow Diagram – Level 0

NMD202 Web Scripting Week5. What we will cover today PHP & MySQL Displaying Dynamic Pages Exercises Modifying Data PHP Exercises Assignment 1.

Setting Up TGO User Accounts. Creating User Accounts for Other Users If your company has other users who need to use the Active Orders system, your company’s.

1 © Donald F. Ferguson, All rights reserved.Modern Internet Service Oriented Application Development – Lecture 2: REST Details and Patterns Some.

NIMAC for Publishers: How to Create Sub User Accounts December 2015.

©SoftMooreSlide 1 Introduction to HTML: Forms ©SoftMooreSlide 2 Forms Forms provide a simple mechanism for collecting user data and submitting it to.

© Copyright 2009 SSLPost 01. © Copyright 2009 SSLPost 02 a recipient is sent an encrypted that contains data specific to that recipient the data.

IS2803 Developing Multimedia Applications for Business (Part 2) Lecture 1: Introduction to IS2803 Rob Gleasure

GLACIER DEPARTMENT ADMINISTRATOR 3 ROLE. Role of Department Administrator 3 Departments who pay a large number of foreign individuals can choose to give.

ITM © Port,Kazman 1 ITM 352 Cookies. ITM © Port,Kazman 2 Problem… r How do you identify a particular user when they visit your site (or any.

Web Application Design. Data –What data is available? –How do we store it or how is it stored in the DB? Schema Data types Etc. –Where is the data?

Global Transaction Bank Deutsche Bank Investor Reporting Demo.

Securing Web Applications Lesson 4B / Slide 1 of 34 J2EE Web Components Pre-assessment Questions 1. Identify the correct return type returned by the doStartTag()

© 2015 Eaton. All Rights Reserved.. Supplier Registration and Access.

Yahoo Help Phone Number Get Instant Help.

ELISTING How to use eListing to conveniently and quickly file your personal property listing online. DEPARTMENT OF ASSESSMENTS King County To navigate.

Lindsey Velez, Director of Instructional Technology Single Sign-On One Click.

Logging On – to Rotary databases Two Distinct Resources – Club Website & Database Referred to often as ClubRunner – Rotary International.

STARR Companies: HR Portal New User Registration Guide

Exe Related 2FA Functionality.

TaxSlayer Pro Online.

PHP / MySQL Introduction

Scholarship America Dollars for Scholars: Completing the Student Profile All Dollars for Scholars scholarships are applied for online via the Dollars.

How to Register on Active Orders Trading Grid Company Registration

Login & administration page

To the ETS – Encumbrance Online Training Course

IXercise Webapp Group 8b.

To the ETS – Encumbrance Online Training Course

Lecture 19: post and Public APIS

FCL – Administration Tool

Scholarship America Dollars for Scholars: Completing the Student Profile All Dollars for Scholars scholarships are applied for online via the Dollars.

Completing the Primary Reference portion of the Student Profile

Presentation transcript:

ASSIGNMENT 2 Salim Malakouti

Ticketing Website  User submits tickets  Admins answer tickets or take appropriate actions

Demo

Posting tickets  Enter info: Name Brief description of problem NOTE: All info are required and should be checked at server side. (Client side using JS is extra credit) User submits the ticket

How to handle a ticket submission  When a ticket is submitted:  A confirmation is returned to the user in a Web page  An confirmation is sent to the user (using the address submitted  The request is added to the technical support database  An is sent to all tech administrators Admins are predefined in the system You have their records in the database No need for any user interface Admins need to login Their info should be in DB

Login Requirement:  Show error for invalid user and pass  RESET Password:  Send a link to user’s  Link should contain a random token  Token should be stored in DB This way no one can fake the URL

Admin’s view  Table in project description  Make sure to have a nice design and use tables for it.  Description of the Admin Table features

Ticket’s Page  Ticket info and body  Close / reopen the ticket  You will need to keep a flag in DB check for something that would have the min waste of storage  Assign / Remove self to the ticket  You will need to update the information in DB  the submitter  You have done examples in lectures  Delete the ticket  We did something similar in class  Find all other tickets from the same submitter person that submitted the ticket in question  Send a query to database  Find all similar tickets  Tickets having at least  Go back to the main administrator page

Security  Common bug:  User is not logged in as Admin  Goes to admin.php ERROR: Access denied  So he tries to go to ticket.php?id=293  We are not checking it there because we were assuming that everyone will start from admin.php (Cheaters and Hackers)

How to handle it?  A simple and clean way to handle it:  Create a auth.php which has to contians the code for authentication and access management  Use “Include “auth.php” on the first line of each file  Sample

Database  You choose your schema  You will at least need Admin: A table to keep admins’ info Ticket: Keep ticket info (Two or more) It will need and ID as Primary Key similar to our Movie database Why?

Requirements  Use classes effectively  I will check this

How to start the project  Start with creating the token page  Design DB  Submission of Ticket  Checkout your DB using PHPMyAdmin to CMI toolsto check if it works  Check for possible bugs and hacks and miss uses of your system  Move to Next  Take care of the admin table  Take care of Ticket’s Page  Make sure you design, code and implement one by one. Don’t forget checking for possible misuses after each part is finished and after the whole project is finished

IMPORTANT  START EARLY