Now with CodeIgniter 4

Modern Membership Management

A secure, scalable membership platform built on CodeIgniter 4. Features OAuth integration, role-based access control, RESTful API, and a stunning admin dashboard.

Get Started Explore Features
PHP 8.1+ OAuth 2.0 MIT Licensed
Terminal — bash
$ composer create-project
cimembership/cimembership
Installation complete
$ php spark install:app
Security BCrypt + CSRF
API Ready RESTful
OAuth 6 Providers
Features

Everything you need to manage users

Built with modern best practices and security in mind. No bloat, just what you need for professional membership management.

Enterprise Security

BCrypt password hashing with cost factor 12, CSRF protection on all forms, rate limiting per IP, and secure session management with automatic regeneration.

BCrypt CSRF Rate Limited XSS Protected

OAuth 2.0

Social login with Google, GitHub, Facebook, LinkedIn, Twitter, and Microsoft. One-click authentication setup.

Role-Based Access

Flexible permission system with user groups. Control access granularly.

Admin Dashboard

Beautiful, responsive admin panel with user management and analytics.

RESTful API

Complete API with key authentication. Build headless apps, mobile clients, or integrate with third-party services. API ready out of the box.

Quick Start

Install in minutes, not hours

Our modern CLI installer handles database setup, migrations, and initial configuration automatically. Get up and running with a single command.

1

Install via Composer

Creates project and installs all dependencies

2

Run the Installer

Interactive CLI configures database and settings

3

Start Building

Admin user created, ready to customize

bash
# Install via Composer
composer create-project cimembership/cimembership
cd cimembership
# Run the interactive installer
php spark install:app
✓ Database configured
✓ Migrations run
✓ Admin user created
Installation complete!
Security

Built with security in mind

Enterprise-grade security features protect your users and data from day one.

Password Hashing

BCrypt with cost factor 12 for secure password storage. Industry standard protection.

CSRF Protection

All forms protected by default. Prevents cross-site request forgery attacks automatically.

Rate Limiting

Login attempts limited per IP address. Protects against brute force attacks.

Session Security

Sessions regenerated on login. Secure session handling prevents fixation attacks.

XSS Protection

Output escaping by default. Protects against cross-site scripting vulnerabilities.

SQL Injection Prevention

Parameterized queries throughout. No raw SQL vulnerabilities.

API

RESTful API ready

Build headless applications, mobile clients, or integrate with third-party services using our complete RESTful API.

  • API key authentication
  • Full CRUD operations for users
  • JSON responses
  • Rate limiting support
curl response
# Get users
curl -H "X-API-Key: your-key" \
https://api.example.com/users
# Create user
curl -X POST \
-H "X-API-Key: your-key" \
-H "Content-Type: application/json" \
-d '{"username":"john",
"email":"john@example.com"}' \
/api/users

Seamless Upgrade from v3

Migrating from CIMembership v3 (CodeIgniter 3)? Our upgrade command migrates your users, groups, profiles, and settings automatically.

php spark upgrade:fromv3 --source-db=old_db --source-prefix=ci_

Ready to build your membership platform?

Join developers worldwide using CIMembership to power their user management. Open source and free forever.

Star on GitHub Read Documentation