[TriLUG] htaccess
Augie Schwer
augie.schwer at gmail.com
Fri Mar 25 02:10:14 EST 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
On Thu, 24 Mar 2005 17:45:01 -0500, Joseph Tate <dragonstrider at gmail.com> wrote:
> Authentication usernames and passwords (like the ones provided in the
> dialog displayed after seeing a 401) are available in PHP through the
> $_SERVER object via PHP_AUTH_USER and PHP_AUTH_PW'
> See http://www.php.net/manual/en/reserved.variables.php#reserved.variables.server
http://us4.php.net/features.http-auth
Has some good examples, but note the caveat:
"As of PHP 4.3.0, in order to prevent someone from writing a script which
reveals the password for a page that was authenticated through a
traditional external mechanism, the PHP_AUTH variables will not be set
if external authentication is enabled for that particular page and safe
mode is enabled."
Augie.
- --
Registered Linux user #229905
GPG Public Key: http://www.schwer.us/schwer.asc
Key fingerprint = 9815 AE19 AFD1 1FE7 5DEE 2AC3 CB99 2784 27B0 C072
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)
iQEVAwUBQkO5RccjCXa2d7m4AQjqrQgAmGKw1rELWuYQ4WpYKDGUh1mdijv1w1eC
LYPc4OOhIHAoH7i/rkaY8RveOfM7z97FJ9PolzUoGzKa/FG7POTqEU40pnxyQkgC
udi4/GsL++3H3eyHGreZIIZIuOSfbJt4vO6ABxyKVOLBv5kIGqbcVtNTjZroR3C/
5hwO+XWnqP8wp88iAbPx9GElPdwMnorGtyK2lwmlG6/rB6YVgXzqKW6TbbPdcnKG
oN/DoVrlWKy0l/8hJWI4pKXgCUWH/4AFhf0IxdhOyjgZ9RmBmm6ajB4jxHefPCdE
U60AXKIEtWxyJWfQotOxl6lo/2qpzeZ4IymF5dFoYbqgxz7uBIfoZg==
=xeKB
-----END PGP SIGNATURE-----
More information about the TriLUG
mailing list