Welcome to WebmasterWorld Guest from 107.20.122.81

Forum Moderators: coopster & jatar k

Message Too Old, No Replies

Automatic WWW-Authenticate if the user is already logged

     

rmarescu

12:20 pm on May 3, 2006 (gmt 0)

5+ Year Member



Hello!

I have the following situation:

- A login page where the users are logging in using a web form.
- A download area, where the people must to be logged in to access the files. At this moment I'm using a .htaccess file for authentication.

It is possible to authenticate people automatically if they are already logged in via web form?

I don't know how to set PHP_AUTH_USER and PHP_AUTH_PW without popping up the small authentication window.

Thanks!

Habtom

1:43 pm on May 3, 2006 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



I am not sure if it has security holes, but as one logs into the system, I assign the user's value to a session variable, which can be later used to check for value. If the value is still there, then the person gets access, if not gets redirected to whatever page.

btw, was this what you are looking for?

Hab

jatar_k

4:07 pm on May 3, 2006 (gmt 0)

WebmasterWorld Administrator jatar_k is a WebmasterWorld Top Contributor of All Time 10+ Year Member



you could use something aside from apache auth maybe roll your own

with apache auth you will always have the little box

maybe this thread might help
[webmasterworld.com...]

hakre

8:14 am on May 4, 2006 (gmt 0)

WebmasterWorld Senior Member 10+ Year Member



It is possible to authenticate people automatically if they are already logged in via web form?

i have not done this personally, but when PHP is running as module, you're comming closer to apache and these specs:

[php.net...]

maybe virtual can do the job of tile transferring later on and you php script itself can check the users validity.

 

Featured Threads

Hot Threads This Week

Hot Threads This Month