Re: [PHP] PHP Auth with Apache
I'm now understanding how you can get PHP to present you with a username and password promt just like APache would do if you had a .htaccess file in the directory you were trying to enter. Great idea but it seems that it would be easier to just use the .htaccess file in the directory. What I've been trying to find out is how to pass through a .htaccess file if someone has already passed an database authentication lookup in PHP. I have an area on my site Special Publications where users login and their username and password is checked against a MySQL database. One field in their user records is the URL to their directory on our server. Each one of these directories is protected via .htaccess. What I would really like to do is have them redirected to their URL if they pass authentication and not have them enter their username and password again. Is their a way to do this? Thanks, Ed On Wed, 13 Nov 2002, Ewout de Boer wrote: in httpd.conf Directory /scriptdir AllowOverride AuthConfig /Directory More info at http://httpd.apache.org/docs/mod/core.html#allowoverride regards, Ewout - Original Message - From: Alexander Bemme [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 13, 2002 12:02 PM Subject: [PHP] PHP Auth with Apache Hi, i got a little problem (i hope so) I have installed Apache 1.3.26 and PHP 4.2.3 as module. I used the example from www.php.net to do a PHP authentication, but it didn't work, the pop appears but i can't login. In PHPManual is someting about AuthType but nothing about how to fix it. Can someone help out? Thanks --Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] PHP Auth with Apache
Ed, When you do auth with mysql and they succeed then u can set the $_SERVER['PHP_AUTH_USER'] and in theory that should allow you to connect to the directory because that should be set for apache http authentication. You might have to play with it, but i am sure you can get it to work. On Thu, 2002-11-14 at 16:42, [EMAIL PROTECTED] wrote: I'm now understanding how you can get PHP to present you with a username and password promt just like APache would do if you had a .htaccess file in the directory you were trying to enter. Great idea but it seems that it would be easier to just use the .htaccess file in the directory. What I've been trying to find out is how to pass through a .htaccess file if someone has already passed an database authentication lookup in PHP. I have an area on my site Special Publications where users login and their username and password is checked against a MySQL database. One field in their user records is the URL to their directory on our server. Each one of these directories is protected via .htaccess. What I would really like to do is have them redirected to their URL if they pass authentication and not have them enter their username and password again. Is their a way to do this? Thanks, Ed On Wed, 13 Nov 2002, Ewout de Boer wrote: in httpd.conf Directory /scriptdir AllowOverride AuthConfig /Directory More info at http://httpd.apache.org/docs/mod/core.html#allowoverride regards, Ewout - Original Message - From: Alexander Bemme [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 13, 2002 12:02 PM Subject: [PHP] PHP Auth with Apache Hi, i got a little problem (i hope so) I have installed Apache 1.3.26 and PHP 4.2.3 as module. I used the example from www.php.net to do a PHP authentication, but it didn't work, the pop appears but i can't login. In PHPManual is someting about AuthType but nothing about how to fix it. Can someone help out? Thanks --Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- .: B i g D o g :. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] PHP Auth with Apache
Y have a problemm Warning: Cannot send session cache limiter - headers already sent (output started at c:\foxserv\www\t-demo1\pedidos\prod_oficina.php:5) in c:\foxserv\www\t-demo1\pedidos\prod_oficina.php on line 6 Ysrael Guzmán Meza -Mensaje original- De: BigDog [mailto:bigdog;venticon.com] Enviado el: Jueves, 14 de Noviembre de 2002 04:51 a.m. Para: [EMAIL PROTECTED] Asunto: Re: [PHP] PHP Auth with Apache Ed, When you do auth with mysql and they succeed then u can set the $_SERVER['PHP_AUTH_USER'] and in theory that should allow you to connect to the directory because that should be set for apache http authentication. You might have to play with it, but i am sure you can get it to work. On Thu, 2002-11-14 at 16:42, [EMAIL PROTECTED] wrote: I'm now understanding how you can get PHP to present you with a username and password promt just like APache would do if you had a .htaccess file in the directory you were trying to enter. Great idea but it seems that it would be easier to just use the .htaccess file in the directory. What I've been trying to find out is how to pass through a .htaccess file if someone has already passed an database authentication lookup in PHP. I have an area on my site Special Publications where users login and their username and password is checked against a MySQL database. One field in their user records is the URL to their directory on our server. Each one of these directories is protected via .htaccess. What I would really like to do is have them redirected to their URL if they pass authentication and not have them enter their username and password again. Is their a way to do this? Thanks, Ed On Wed, 13 Nov 2002, Ewout de Boer wrote: in httpd.conf Directory /scriptdir AllowOverride AuthConfig /Directory More info at http://httpd.apache.org/docs/mod/core.html#allowoverride regards, Ewout - Original Message - From: Alexander Bemme [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 13, 2002 12:02 PM Subject: [PHP] PHP Auth with Apache Hi, i got a little problem (i hope so) I have installed Apache 1.3.26 and PHP 4.2.3 as module. I used the example from www.php.net to do a PHP authentication, but it didn't work, the pop appears but i can't login. In PHPManual is someting about AuthType but nothing about how to fix it. Can someone help out? Thanks --Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- .: B i g D o g :. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] PHP Auth with Apache
You have a space or a tag or something before you call session_start, session_start has to be the very first thing, unless you use output buffering (ob_start, etc). On Thu, 2002-11-14 at 11:54, Ysrael Guzmán wrote: Y have a problemm Warning: Cannot send session cache limiter - headers already sent (output started at c:\foxserv\www\t-demo1\pedidos\prod_oficina.php:5) in c:\foxserv\www\t-demo1\pedidos\prod_oficina.php on line 6 Ysrael Guzmán Meza -Mensaje original- De: BigDog [mailto:bigdog;venticon.com] Enviado el: Jueves, 14 de Noviembre de 2002 04:51 a.m. Para: [EMAIL PROTECTED] Asunto: Re: [PHP] PHP Auth with Apache Ed, When you do auth with mysql and they succeed then u can set the $_SERVER['PHP_AUTH_USER'] and in theory that should allow you to connect to the directory because that should be set for apache http authentication. You might have to play with it, but i am sure you can get it to work. On Thu, 2002-11-14 at 16:42, [EMAIL PROTECTED] wrote: I'm now understanding how you can get PHP to present you with a username and password promt just like APache would do if you had a .htaccess file in the directory you were trying to enter. Great idea but it seems that it would be easier to just use the .htaccess file in the directory. What I've been trying to find out is how to pass through a .htaccess file if someone has already passed an database authentication lookup in PHP. I have an area on my site Special Publications where users login and their username and password is checked against a MySQL database. One field in their user records is the URL to their directory on our server. Each one of these directories is protected via .htaccess. What I would really like to do is have them redirected to their URL if they pass authentication and not have them enter their username and password again. Is their a way to do this? Thanks, Ed On Wed, 13 Nov 2002, Ewout de Boer wrote: in httpd.conf Directory /scriptdir AllowOverride AuthConfig /Directory More info at http://httpd.apache.org/docs/mod/core.html#allowoverride regards, Ewout - Original Message - From: Alexander Bemme [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 13, 2002 12:02 PM Subject: [PHP] PHP Auth with Apache Hi, i got a little problem (i hope so) I have installed Apache 1.3.26 and PHP 4.2.3 as module. I used the example from www.php.net to do a PHP authentication, but it didn't work, the pop appears but i can't login. In PHPManual is someting about AuthType but nothing about how to fix it. Can someone help out? Thanks --Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- .: B i g D o g :. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- Adam Voigt ([EMAIL PROTECTED]) The Cryptocomm Group My GPG Key: http://64.238.252.49:8080/adam_at_cryptocomm.asc signature.asc Description: This is a digitally signed message part
Re: [PHP] PHP Auth with Apache
PHP sends a '401 Authorization required' to your browser (just like apache) and it also gets the user/password info Code example: ?php if(!isset($PHP_AUTH_USER)) { Header(WWW-Authenticate: Basic Realm=\Secret Page\); Header(HTTP/1.0 401 Unauthorized); echo You did not log in correctly...\n; exit; # exit wil stop php from parsing the rest of the script } else { echo Hello $PHP_AUTH_USER. You entered $PHP_AUTH_PW as your password; } ? In this example no user/passwd checking is done... just replace the 'welcome' message with your mysql/ldap check routine and voila ! regards, Ewout de Boer - Original Message - From: [EMAIL PROTECTED] To: Ewout de Boer [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Thursday, November 14, 2002 5:42 PM Subject: Re: [PHP] PHP Auth with Apache I'm now understanding how you can get PHP to present you with a username and password promt just like APache would do if you had a .htaccess file in the directory you were trying to enter. Great idea but it seems that it would be easier to just use the .htaccess file in the directory. What I've been trying to find out is how to pass through a .htaccess file if someone has already passed an database authentication lookup in PHP. I have an area on my site Special Publications where users login and their username and password is checked against a MySQL database. One field in their user records is the URL to their directory on our server. Each one of these directories is protected via .htaccess. What I would really like to do is have them redirected to their URL if they pass authentication and not have them enter their username and password again. Is their a way to do this? Thanks, Ed On Wed, 13 Nov 2002, Ewout de Boer wrote: in httpd.conf Directory /scriptdir AllowOverride AuthConfig /Directory More info at http://httpd.apache.org/docs/mod/core.html#allowoverride regards, Ewout - Original Message - From: Alexander Bemme [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 13, 2002 12:02 PM Subject: [PHP] PHP Auth with Apache Hi, i got a little problem (i hope so) I have installed Apache 1.3.26 and PHP 4.2.3 as module. I used the example from www.php.net to do a PHP authentication, but it didn't work, the pop appears but i can't login. In PHPManual is someting about AuthType but nothing about how to fix it. Can someone help out? Thanks --Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] PHP Auth with Apache
I can set the $_SERVER['PHP_AUTH_USER'] and $_SERVER['PHP_AUTH_PW'] easily enough but how would you pass that information along with the redirect so apach doesn't prompt you for username and password? I have tried the header(Location http://usernam:password;URL) method and it always prompts as well. Thanks, Ed On 14 Nov 2002, BigDog wrote: Ed, When you do auth with mysql and they succeed then u can set the $_SERVER['PHP_AUTH_USER'] and in theory that should allow you to connect to the directory because that should be set for apache http authentication. You might have to play with it, but i am sure you can get it to work. On Thu, 2002-11-14 at 16:42, [EMAIL PROTECTED] wrote: I'm now understanding how you can get PHP to present you with a username and password promt just like APache would do if you had a .htaccess file in the directory you were trying to enter. Great idea but it seems that it would be easier to just use the .htaccess file in the directory. What I've been trying to find out is how to pass through a .htaccess file if someone has already passed an database authentication lookup in PHP. I have an area on my site Special Publications where users login and their username and password is checked against a MySQL database. One field in their user records is the URL to their directory on our server. Each one of these directories is protected via .htaccess. What I would really like to do is have them redirected to their URL if they pass authentication and not have them enter their username and password again. Is their a way to do this? Thanks, Ed On Wed, 13 Nov 2002, Ewout de Boer wrote: in httpd.conf Directory /scriptdir AllowOverride AuthConfig /Directory More info at http://httpd.apache.org/docs/mod/core.html#allowoverride regards, Ewout - Original Message - From: Alexander Bemme [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 13, 2002 12:02 PM Subject: [PHP] PHP Auth with Apache Hi, i got a little problem (i hope so) I have installed Apache 1.3.26 and PHP 4.2.3 as module. I used the example from www.php.net to do a PHP authentication, but it didn't work, the pop appears but i can't login. In PHPManual is someting about AuthType but nothing about how to fix it. Can someone help out? Thanks --Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- .: B i g D o g :. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] PHP Auth with Apache
You should use sessions for this...however, i would not store the password in the session... And verify it that way...i would probably use all sessions for this... Check sessions first and see...if not then do the mysql or apache auth... When you do sessions you can save the page they are trying to access, then have them login (authenticate), then redirect to the page that they wanted... If you are unfamiliar about sesssions: 1. php.net 2. phpbeginner.com 3. phpbuilder.com 4. php.net archives 5. google On Thu, 2002-11-14 at 18:09, [EMAIL PROTECTED] wrote: I can set the $_SERVER['PHP_AUTH_USER'] and $_SERVER['PHP_AUTH_PW'] easily enough but how would you pass that information along with the redirect so apach doesn't prompt you for username and password? I have tried the header(Location http://usernam:password;URL) method and it always prompts as well. Thanks, Ed On 14 Nov 2002, BigDog wrote: Ed, When you do auth with mysql and they succeed then u can set the $_SERVER['PHP_AUTH_USER'] and in theory that should allow you to connect to the directory because that should be set for apache http authentication. You might have to play with it, but i am sure you can get it to work. On Thu, 2002-11-14 at 16:42, [EMAIL PROTECTED] wrote: I'm now understanding how you can get PHP to present you with a username and password promt just like APache would do if you had a .htaccess file in the directory you were trying to enter. Great idea but it seems that it would be easier to just use the .htaccess file in the directory. What I've been trying to find out is how to pass through a .htaccess file if someone has already passed an database authentication lookup in PHP. I have an area on my site Special Publications where users login and their username and password is checked against a MySQL database. One field in their user records is the URL to their directory on our server. Each one of these directories is protected via .htaccess. What I would really like to do is have them redirected to their URL if they pass authentication and not have them enter their username and password again. Is their a way to do this? Thanks, Ed On Wed, 13 Nov 2002, Ewout de Boer wrote: in httpd.conf Directory /scriptdir AllowOverride AuthConfig /Directory More info at http://httpd.apache.org/docs/mod/core.html#allowoverride regards, Ewout - Original Message - From: Alexander Bemme [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 13, 2002 12:02 PM Subject: [PHP] PHP Auth with Apache Hi, i got a little problem (i hope so) I have installed Apache 1.3.26 and PHP 4.2.3 as module. I used the example from www.php.net to do a PHP authentication, but it didn't work, the pop appears but i can't login. In PHPManual is someting about AuthType but nothing about how to fix it. Can someone help out? Thanks --Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- .: B i g D o g :. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- .: B i g D o g :. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
RE: [PHP] PHP Auth with Apache
I have a problem, i'm new in PHP It is the problem in my browsegive me the solution please Warning: Cannot send session cache limiter - headers already sent (output started at c:\foxserv\www\t-demo1\pedidos\prod_oficina.php:5) in c:\foxserv\www\t-demo1\pedidos\prod_oficina.php on line 6 HELP MEEE!!1 Sos ygm
RE: [PHP] PHP Auth with Apache
You are sending the header information to the browser before the session stuff begins... make sure that you call session_start(); right after your ?php start tag... On Thu, 2002-11-14 at 21:50, Ysrael Guzmán wrote: I have a problem, i'm new in PHP It is the problem in my browsegive me the solution please Warning: Cannot send session cache limiter - headers already sent (output started at c:\foxserv\www\t-demo1\pedidos\prod_oficina.php:5) in c:\foxserv\www\t-demo1\pedidos\prod_oficina.php on line 6 HELP MEEE!!1 Sos ygm -- .: B i g D o g :. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] PHP Auth with Apache
Hi, i got a little problem (i hope so) I have installed Apache 1.3.26 and PHP 4.2.3 as module. I used the example from www.php.net to do a PHP authentication, but it didn't work, the pop appears but i can't login. In PHPManual is someting about AuthType but nothing about how to fix it. Can someone help out? Thanks --Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] PHP Auth with Apache
Did you use $_SERVER['PHP_AUTH_USER'] or just $PHP_AUTH_USER Alexander Bemme wrote: Hi, i got a little problem (i hope so) I have installed Apache 1.3.26 and PHP 4.2.3 as module. I used the example from www.php.net to do a PHP authentication, but it didn't work, the pop appears but i can't login. In PHPManual is someting about AuthType but nothing about how to fix it. Can someone help out? Thanks --Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] PHP Auth with Apache
in httpd.conf Directory /scriptdir AllowOverride AuthConfig /Directory More info at http://httpd.apache.org/docs/mod/core.html#allowoverride regards, Ewout - Original Message - From: Alexander Bemme [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, November 13, 2002 12:02 PM Subject: [PHP] PHP Auth with Apache Hi, i got a little problem (i hope so) I have installed Apache 1.3.26 and PHP 4.2.3 as module. I used the example from www.php.net to do a PHP authentication, but it didn't work, the pop appears but i can't login. In PHPManual is someting about AuthType but nothing about how to fix it. Can someone help out? Thanks --Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php