We need an "jQuery Mobile" Authentication system with an Admin backend. In Summary the system needs to manage users being able to see or not see selected pages or content within jQuery Mobile apps.
PLEASE NOTE: This is not just a PHP page authentication system, this is an authentication system that runs on mobile applications using the jQuery Mobile framework and run on Mobile Smartphones. As such the permissions need to persist without the user having to login every time they open the application plus all the other issues related on Mobile Web Applications.
Admin system will allow groups / users. Users will be assigned to groups. Users must enter their username, email address and password.
Security model for jQuery Mobile applications will need:
*/ Admin Web based Backend should be controlled via a MySQL Db with checks for SQL Injection and other vulnerabilities.
MySQL Database fields: ID, UserName, EmailAddress, DateCreated, Status (paid, pending, registered), Group, Password (MD5)
*/ This is an "Authentication System" for jQuery Mobile - Simple system to allow or not allow content to be viewed on the jQuery Mobile pages or external pages depending on the permission. We are open to better solutions than described here or similar systems that fit the specification that have been developed by companies to solve this problem.
*/ A simple "jQuery Mobile" Settings page template to allow the user to enter their username, email and password with options to register and forgot /reset password. If the user registers and email should be sent to a nominated email address and added to the database as status = pending. If the user has forgotten their password or the password needs resetting then an email should be sent to a nominated email address with the appropriate message - the admin would then create a new password and email the user the details. A button needs to allow the user to go to a page in order to register the application. The settings should persist in the jQuery Mobile application without the user having to enter them every time they use the application.
*/ On the register page there should be an option to pay via PayPal with a button. There also needs to be username, email address and password fields to allow them to register the product. These details must be stored in the MySQL database and an email sent to a nominated email address with a customisable message.
*/ Any content within the jQuery Mobile Application should be able to be NOT DISPLAYED if the authentication permissions do not permit the user to see that content - with a redirect to a page that allows them to register to see the content.
Structured programming with well commented code is required in all areas with scripts to create the database structures if required.
I have attached some prototypes / wireframes for the settings and registration page. They are basically very simple as most of the work will be in the authentication and persistence of the permissions across the pages.