[PHP-DOC] cvs: phpdoc /en/features http-auth.xml

Fri, 06 Jun 2003 03:43:26 -0700 

philip          Thu Jun  5 13:36:29 2003 EDT

  Modified files:              
    /phpdoc/en/features http-auth.xml 
  Log:
  A note about IIS + CGI http auth working in 4.3.3+, this documents bug #23902
  
  
Index: phpdoc/en/features/http-auth.xml
diff -u phpdoc/en/features/http-auth.xml:1.34 phpdoc/en/features/http-auth.xml:1.35
--- phpdoc/en/features/http-auth.xml:1.34       Mon Mar 24 06:24:29 2003
+++ phpdoc/en/features/http-auth.xml    Thu Jun  5 13:36:29 2003
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="iso-8859-1"?>
-<!-- $Revision: 1.34 $ -->
+<!-- $Revision: 1.35 $ -->
  <chapter id="features.http-auth">
   <title>HTTP authentication with PHP</title>
 
@@ -155,14 +155,28 @@
    '_' key to clear their authentication information, however.
   </simpara>
   <simpara>
-   Also note that this does not work using Microsoft's IIS server and
-   the CGI version of PHP due to a limitation of IIS.  If you're using
-   the IIS module (ISAPI), you may use the <literal>HTTP_AUTHORIZATION 
-   </literal> variable for example: <literal>list($user, $pw) = 
-   explode(':', base64_decode(substr($_SERVER['HTTP_AUTHORIZATION'], 6)));
-   </literal>
+   Also note that until PHP 4.3.3, HTTP Authentication did not work
+   using Microsoft's IIS server with the CGI version of PHP due to a
+   limitation of IIS.  In order to get it to work in PHP 4.3.3+, 
+   you must edit your IIS configuration "Directory Security".  Click
+   on "Edit" and only check "Anonymous Access", all other fields
+   should be left unchecked.
   </simpara>
-
+  <simpara>
+   Another limitation is if you're using the IIS module (ISAPI), you may not
+   use the <literal>PHP_AUTH_*</literal> variables but instead, the variable
+   <literal>HTTP_AUTHORIZATION</literal> is available.  For example, consider
+   the following code: <literal>list($user, $pw) = explode(':',  
+   base64_decode(substr($_SERVER['HTTP_AUTHORIZATION'], 6)));</literal>
+  </simpara>
+  <note>
+   <title>IIS Note:</title>
+   <simpara>
+    For HTTP Authentication to work with IIS, the PHP directive
+    <link linkend="ini.cgi.rfc2616_headers">cgi.rfc2616_headers</link> must
+    be set to <literal>0</literal> (the default value).
+   </simpara>
+  </note>
   <note>
    <para>
     If <link linkend="ini.safe-mode">safe mode</link> is enabled, the



-- 
PHP Documentation Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to