You are here: RE: [PHP] New identification after an error... « PHP « IT news, forums, messages
RE: [PHP] New identification after an error...

Posted by "Albert" on 01/20/06 16:29

David BERCOT wrote:
> I use this program to force a user to authenticate :
> if (!isset($_SERVER["PHP_AUTH_USER"])) {
> header("WWW-Authenticate: Basic realm=\"Intranet SDSED\"");
> header("HTTP/1.1 401 Unauthorized");
> }
> Everything is ok except a detail : if the user makes a mistake (for
> example, a bad password), the variable $_SERVER["PHP_AUTH_USER"] is
> initialised.
> So, if he wants to do again the above test, another identification won't
> happen (because $_SERVER["PHP_AUTH_USER"] is already set).
> I've tried :
> $_SERVER["PHP_AUTH_USER"] = NULL;
> without succes...
>
> Do you have a clue ?

<?
if (!isset($_SERVER['PHP_AUTH_USER'])) {
header('WWW-Authenticate: Basic realm="'._PRODNAME.'"');
header('HTTP/1.0 401 Unauthorized');
echo "You are not authorized to enter this page";
} else {
$inUser = $_SERVER['PHP_AUTH_USER'];
$inPWD = $_SERVER['PHP_AUTH_PW'];

if (strcmp($inUser, 'me') == 0 && strcmp($inPWD, 'me') == 0) {
echo "logged in";
} else {
header('WWW-Authenticate: Basic realm="'._PRODNAME.'"');
header('HTTP/1.0 401 Unauthorized');
echo "You are not authorized to enter this page";
}
}
?>

HTH

Albert

--
No virus found in this outgoing message.
Checked by AVG Free Edition.
Version: 7.1.375 / Virus Database: 267.14.21/235 - Release Date: 2006/01/19

 

Navigation:

[Reply to this message]


Удаленная работа для программистов  •  Как заработать на Google AdSense  •  England, UK  •  статьи на английском  •  PHP MySQL CMS Apache Oscommerce  •  Online Business Knowledge Base  •  DVD MP3 AVI MP4 players codecs conversion help
Home  •  Search  •  Site Map  •  Set as Homepage  •  Add to Favourites

Copyright © 2005-2006 Powered by Custom PHP Programming

Сайт изготовлен в Студии Валентина Петручека
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация