#29805 [NEW]: HTTP Authentication Issues

Mon, 23 Aug 2004 18:40:00 -0700 

From:             michaelw at webcentral dot com dot au
Operating system: Solaris 9
PHP version:      4.3.8
PHP Bug Type:     iPlanet related
Bug description:  HTTP Authentication Issues

Description:
------------
Hi,

PHP HTTP Authentication under Sun One Webserver 6.0 (and presumably any
iPlanet variant) doesn't seem to work correctly.

The PHP_AUTH_USER and PHP_AUTH_PW variables don't seem to get set. (This
is with Safe Mode disabled). 

Additionally, with Safe Mode enabled, I cannot determine the username or
password entered by the user.  



Reproduce code:
---------------
<?php
  if (!isset($_SERVER['PHP_AUTH_USER'])) {
   header('WWW-Authenticate: Basic realm="My Realm"');
   header('HTTP/1.0 401 Unauthorized');
   echo 'Text to send if user hits Cancel button';
   exit;
  } else {
   echo "<p>Hello {$_SERVER['PHP_AUTH_USER']}.</p>";
   echo "<p>You entered {$_SERVER['PHP_AUTH_PW']} as your password.</p>";
  }
?>


Expected result:
----------------
Under apache, the output is:

Hello testing.

You entered 123 as your password.

(when username is testing and 123 is password)

Under SunOne, the username/password box just keeps redisplaying. 

Actual result:
--------------
Under SunOne, the username/password box just keeps redisplaying. 

-- 
Edit bug report at http://bugs.php.net/?id=29805&edit=1
-- 
Try a CVS snapshot (php4):   http://bugs.php.net/fix.php?id=29805&r=trysnapshot4
Try a CVS snapshot (php5.0): http://bugs.php.net/fix.php?id=29805&r=trysnapshot50
Try a CVS snapshot (php5.1): http://bugs.php.net/fix.php?id=29805&r=trysnapshot51
Fixed in CVS:                http://bugs.php.net/fix.php?id=29805&r=fixedcvs
Fixed in release:            http://bugs.php.net/fix.php?id=29805&r=alreadyfixed
Need backtrace:              http://bugs.php.net/fix.php?id=29805&r=needtrace
Need Reproduce Script:       http://bugs.php.net/fix.php?id=29805&r=needscript
Try newer version:           http://bugs.php.net/fix.php?id=29805&r=oldversion
Not developer issue:         http://bugs.php.net/fix.php?id=29805&r=support
Expected behavior:           http://bugs.php.net/fix.php?id=29805&r=notwrong
Not enough info:             http://bugs.php.net/fix.php?id=29805&r=notenoughinfo
Submitted twice:             http://bugs.php.net/fix.php?id=29805&r=submittedtwice
register_globals:            http://bugs.php.net/fix.php?id=29805&r=globals
PHP 3 support discontinued:  http://bugs.php.net/fix.php?id=29805&r=php3
Daylight Savings:            http://bugs.php.net/fix.php?id=29805&r=dst
IIS Stability:               http://bugs.php.net/fix.php?id=29805&r=isapi
Install GNU Sed:             http://bugs.php.net/fix.php?id=29805&r=gnused
Floating point limitations:  http://bugs.php.net/fix.php?id=29805&r=float

Reply via email to