Automatic WWW-Authenticate if the user is already logged

Forum Moderators: coopster

Message Too Old, No Replies

Automatic WWW-Authenticate if the user is already logged

rmarescu

12:20 pm on May 3, 2006 (gmt 0)

Hello!

I have the following situation:

- A login page where the users are logging in using a web form.
- A download area, where the people must to be logged in to access the files. At this moment I'm using a .htaccess file for authentication.

It is possible to authenticate people automatically if they are already logged in via web form?

I don't know how to set PHP_AUTH_USER and PHP_AUTH_PW without popping up the small authentication window.

Thanks!

Habtom

1:43 pm on May 3, 2006 (gmt 0)

I am not sure if it has security holes, but as one logs into the system, I assign the user's value to a session variable, which can be later used to check for value. If the value is still there, then the person gets access, if not gets redirected to whatever page.

btw, was this what you are looking for?

Hab

jatar_k

4:07 pm on May 3, 2006 (gmt 0)

you could use something aside from apache auth maybe roll your own

with apache auth you will always have the little box

maybe this thread might help
[webmasterworld.com...]

hakre

8:14 am on May 4, 2006 (gmt 0)

It is possible to authenticate people automatically if they are already logged in via web form?

i have not done this personally, but when PHP is running as module, you're comming closer to apache and these specs:

[php.net...]

maybe virtual can do the job of tile transferring later on and you php script itself can check the users validity.