It sets NTLM and basic by the browser response. (IE => NTLM, everything else => basic)On the inTRAnet side of this it works fine, and authenticates agenst a PDC/BDC. on the inTERnet side of this it fails. prompts for user/pass/domain.
What I am trying to do is if the user is on the network use NTLM. if he is on the internet use basic and have them sign in via user/passwd created w/ htpasswd.
am I not using authenNTLM properly? am I missing something?
A way around this, is to do something like AuthNetLDAP, where we return DECLINED if we want to allow an alternative authentication, which will send the request to the next AuthenHandler, which could be what ever you would like it to be. (Except that IE would still try to authenticate using NTLM... :( )
Hmmm.... You would probably have to setup a handler before the authen phase to test the ip address of the end-user, and then send the request to the correct authen handler... Does anyone know if there is already some code for this out there?
speeves cws
-- Reporting bugs: http://perl.apache.org/bugs/ Mail list info: http://perl.apache.org/maillist/modperl.html List etiquette: http://perl.apache.org/maillist/email-etiquette.html
