Re: [us...@httpd] Can you supply username & password for AuthType Basic within a POST/GET?

2009-08-27 Thread Jeff Sherk Forerunner Ministries
Thanks William... yes we are using SSL... just wanted to make sure it was secure as well! Thanks - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more i

Re: [us...@httpd] Can you supply username & password for AuthType Basic within a POST/GET?

2009-08-26 Thread William A. Rowe, Jr.
Jeff Sherk Forerunner Ministries wrote: > Per Erics earlier response, if I encode the username and password in the > URL with https instead of > http, is it secure? > > Like this https://username:passw...@mydomain.com/foo Provided you are using https: SSL or TLS Upgrade you are assured it is secu

Re: [us...@httpd] Can you supply username & password for AuthType Basic within a POST/GET?

2009-08-26 Thread Jeff Sherk Forerunner Ministries
Per Erics earlier response, if I encode the username and password in the URL with https instead of http, is it secure? Like this https://username:passw...@mydomain.com/foo - The official User-To-User support forum of the Apa

Re: [us...@httpd] Can you supply username & password for AuthType Basic within a POST/GET?

2009-08-26 Thread Jeff Sherk Forerunner Ministries
Thanks Andre, Mike, Eric and Nick... I will read up on authentication so I can better grasp it!! André Warnier wrote: Jeff Sherk Forerunner Ministries wrote: When requiring a username & password with AuthType Basic, is it possible to include them in a POST or GET request to the server so tha

Re: [us...@httpd] Can you supply username & password for AuthType Basic within a POST/GET?

2009-08-26 Thread André Warnier
Jeff Sherk Forerunner Ministries wrote: When requiring a username & password with AuthType Basic, is it possible to include them in a POST or GET request to the server so that it won't ask for them (because they were provided)? If it's possible, what variable names are assigned to them. Jeff

Re: [us...@httpd] Can you supply username & password for AuthType Basic within a POST/GET?

2009-08-26 Thread Nick Kew
Jeff Sherk Forerunner Ministries wrote: When requiring a username & password with AuthType Basic, is it possible to include them in a POST or GET request to the server so that it won't ask for them (because they were provided)? You seem to be asking for form-based authentication. One option fo

Re: [us...@httpd] Can you supply username & password for AuthType Basic within a POST/GET?

2009-08-26 Thread Mike Cardwell
On 26/08/2009 13:58, Jeff Sherk Forerunner Ministries wrote: When requiring a username & password with AuthType Basic, is it possible to include them in a POST or GET request to the server so that it won't ask for them (because they were provided)? No, it is not possible. You could theoretical

Re: [us...@httpd] Can you supply username & password for AuthType Basic within a POST/GET?

2009-08-26 Thread Eric Covener
On Wed, Aug 26, 2009 at 8:58 AM, Jeff Sherk Forerunner Ministries wrote: > When requiring a username & password with AuthType Basic, is it possible to > include them in a POST or GET request to the server so that it won't ask for > them (because they were provided)? > > If it's possible, what varia

[us...@httpd] Can you supply username & password for AuthType Basic within a POST/GET?

2009-08-26 Thread Jeff Sherk Forerunner Ministries
When requiring a username & password with AuthType Basic, is it possible to include them in a POST or GET request to the server so that it won't ask for them (because they were provided)? If it's possible, what variable names are assigned to them. Thanks --