[PHP] Authentication Question

2002-01-13 Thread Ben Clumeck

I am new to MySQL and PHP.  I am wondering how Authentication through PHP
and MySQL.  How does a username and password now where to take that user?
An example is online banking.  You enter your account number for (username)
and your password.  How does it know where to go for your specific account?
I am looking to create a system similar to online banking.  I appreciate
your help.

Thanks,

Ben


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]




[PHP] authentication question...

2003-03-01 Thread Sunfire
hi
basic question about www-authenticate header...(least i hop its simple)
i have the code:
http://www.grisoft.com).
Version: 6.0.458 / Virus Database: 257 - Release Date: 2/24/2003


-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php



[PHP] authentication question

2004-11-02 Thread Kelly Meeks
I need to require username/password access  in two distinct ways.

At one level, I need to protect all files except .php files within a
directory structure.  I can do this with htaccess using the 
directive.

I also need to serve up database driven content via username/password at
another.  I'm doing this via sessions and php.  I want the same username and
password to work for both.

I don't know how to restrict access to the non-php files with php.  Is there
a way?

If not, is there a way that the username/password info stored in the session
var can be used in conjunction with the htaccess file so if the user has
already logged in via the session system, they don't have to then enter the
same data again via http authentication?

Kelly Meeks
Right Angle, Inc.
PO Box 356
Northampton, MA 01060
413-586-4694 ext. 11


Re: [PHP] Authentication Question

2002-01-14 Thread Nick Wilson

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1


* On 14-01-02 at 09:48 
* Ben Clumeck said

> I am new to MySQL and PHP.  I am wondering how Authentication through PHP
> and MySQL.  How does a username and password now where to take that user?
> An example is online banking.  You enter your account number for (username)
> and your password.  How does it know where to go for your specific account?
> I am looking to create a system similar to online banking.  I appreciate
> your help.

Start by having a look at the crypt() function in the manual then check
out www.phpbuilder.com www.devshed.com for articles relating to this
topick. (I seem to remember there being a couple on one or both of those
sites)
- -- 

Nick Wilson

Tel:+45 3325 0688
Fax:+45 3325 0677
Web:www.explodingnet.com



-BEGIN PGP SIGNATURE-
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iD8DBQE8Qp7rHpvrrTa6L5oRAm1kAJ0epBcWeDdJBHg3DlS32nqe1vyEWgCfbmGD
HIH+FMlUCRb8DDIDLLYhYXY=
=GUQE
-END PGP SIGNATURE-

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]




Re: [PHP] authentication question...

2003-03-02 Thread Ernest E Vogelsinger
At 07:02 02.03.2003, Sunfire said:
[snip]
>basic question about www-authenticate header...(least i hop its simple)
>i have the code:
>header("WWW-Authenticate: basic realm='a realm'");
>header("HTTP/1.0 402 Unauthorized");//dont understand
>//what this line does
>echo "you didnt login yet\n"; //understand it but want
>//something else like a header sent out...
>dont understand what the second line is for and was wondering if that third
>line that someone gets when you hit cancel can be turned into another
>header? or is there a way to force a header block even if output has already
>been put on the screen?
[snip] 

To understand the header lines you need to have some basic knowledge of the
HTTP protocol. Start eating tht HTTP RFC:
http://www.w3.org/Protocols/rfc2616/rfc2616

This will also enlighten yo about the fact that a header cannot be senz
after content has been pushed out.

This said you can use output buffering
(http://www.php.net/manual/en/function.ob-start.php) to avoid output being
sent before the headers:

Example:

ob_start();
echo "some stuff";

// we decide to redirect the client
ob_end_clean();  // clear the output buffer
header('Location: http://somewhere.com');

HTH,

-- 
   >O Ernest E. Vogelsinger
   (\)ICQ #13394035
^ http://www.vogelsinger.at/



-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php



Re: [PHP] authentication question

2004-11-02 Thread Greg Donald
On Tue, 2 Nov 2004 13:48:30 -0500, Kelly Meeks <[EMAIL PROTECTED]> wrote:
> I need to require username/password access  in two distinct ways.

PHP Generic Access Control Lists 

http://phpgacl.sourceforge.net/


-- 
Greg Donald
Zend Certified Engineer
http://gdconsultants.com/
http://destiney.com/

-- 
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php