| Automatic WWW-Authenticate if the user is already logged
|
rmarescu
msg:1312096 | 12:20 pm on May 3, 2006 (gmt 0) |
Hello! I have the following situation: - A login page where the users are logging in using a web form.
- A download area, where the people must to be logged in to access the files. At this moment I'm using a .htaccess file for authentication. It is possible to authenticate people automatically if they are already logged in via web form? I don't know how to set PHP_AUTH_USER and PHP_AUTH_PW without popping up the small authentication window. Thanks!
|
Habtom
msg:1312097 | 1:43 pm on May 3, 2006 (gmt 0) |
I am not sure if it has security holes, but as one logs into the system, I assign the user's value to a session variable, which can be later used to check for value. If the value is still there, then the person gets access, if not gets redirected to whatever page. btw, was this what you are looking for? Hab
|
jatar_k
msg:1312098 | 4:07 pm on May 3, 2006 (gmt 0) |
you could use something aside from apache auth maybe roll your own with apache auth you will always have the little box maybe this thread might help
[webmasterworld.com...]
|
hakre
msg:1312099 | 8:14 am on May 4, 2006 (gmt 0) |
| It is possible to authenticate people automatically if they are already logged in via web form? |
|
i have not done this personally, but when PHP is running as module, you're comming closer to apache and these specs: [php.net...] maybe virtual can do the job of tile transferring later on and you php script itself can check the users validity.
|
|
|
