On Wed, Nov 19, 2008 at 12:47 PM, Thiago H. Pojda
<[EMAIL PROTECTED]> wrote:
> On Wed, Nov 19, 2008 at 12:15 PM, Andrew Ballard <[EMAIL PROTECTED]> wrote:
>>
>> On Wed, Nov 19, 2008 at 9:26 AM, Thiago H. Pojda <[EMAIL PROTECTED]>
>> wrote:
>> > Guys,
>> >
>> > I have to access a WS that uses HTTP a
On Wed, Nov 19, 2008 at 2:49 PM, Boyd, Todd M. <[EMAIL PROTECTED]> wrote:
> > -Original Message-
> > From: Thiago H. Pojda [mailto:[EMAIL PROTECTED]
> > Sent: Wednesday, November 19, 2008 11:47 AM
> > To: Andrew Ballard
> > Cc: PHP-General List
> &
> -Original Message-
> From: Thiago H. Pojda [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, November 19, 2008 11:47 AM
> To: Andrew Ballard
> Cc: PHP-General List
> Subject: Re: [PHP] HTTP Authentication [ SOLVED ]
>
> On Wed, Nov 19, 2008 at 12:15 PM, Andrew B
On Wed, Nov 19, 2008 at 12:15 PM, Andrew Ballard <[EMAIL PROTECTED]> wrote:
> On Wed, Nov 19, 2008 at 9:26 AM, Thiago H. Pojda <[EMAIL PROTECTED]>
> wrote:
> > Guys,
> >
> > I have to access a WS that uses HTTP auth directly with PHP.
> >
> > I've tried using the usual http://user:[EMAIL PROTECTED
On Wed, Nov 19, 2008 at 9:26 AM, Thiago H. Pojda <[EMAIL PROTECTED]> wrote:
> Guys,
>
> I have to access a WS that uses HTTP auth directly with PHP.
>
> I've tried using the usual http://user:[EMAIL PROTECTED]/ but I couldn't get
> it
> working. I believe it has something to do with the password c
> -Original Message-
> From: Craige Leeder [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, November 19, 2008 8:35 AM
> To: Thiago H. Pojda
> Cc: PHP-General List
> Subject: Re: [PHP] HTTP Authentication
>
> Thiago H. Pojda wrote:
> > Guys,
> >
> >
On Wed, Nov 19, 2008 at 11:34 AM, Craige Leeder <[EMAIL PROTECTED]> wrote:
> Thiago H. Pojda wrote:
>
>> Guys,
>>
>> I have to access a WS that uses HTTP auth directly with PHP.
>>
>> I've tried using the usual http://user:[EMAIL PROTECTED]/ but I couldn't get
>> it
>> working. I believe it has so
Thiago H. Pojda wrote:
Guys,
I have to access a WS that uses HTTP auth directly with PHP.
I've tried using the usual http://user:[EMAIL PROTECTED]/ but I couldn't get it
working. I believe it has something to do with the password containing a #
(can't change it) and the browser thinks it's an a
--- Matt Wondra <[EMAIL PROTECTED]> wrote:
> I'm trying to include a file from an HTTP Authenticated server
> in PHP. I have a valid username and password. Is there any way
> to remotely login and include the file?
>
> Ex:
>
> include("https://www.url.com/incl1.php";);
When allow_url_fopen is en
On Friday 03 September 2004 05:27, Matt Wondra wrote:
> I'm trying to include a file from an HTTP Authenticated server in PHP. I
> have a valid username and password. Is there any way to remotely login and
> include the file?
>
> Ex:
>
> include("https://www.url.com/incl1.php";); // Trying to inc
[snip]
I am wondering why is the HTTP Authentication is taking so long to
pop-up once the link/button is clicked. Like 2 minutes I'm using
Apache and there is no PHP being used for HTTP Authentication stuffs as
I
thought it did. I thought one of you might know of this because of
previous
Scott Taylor wrote:
What is the easiest way to access a page that is protected by HTTP basic
authentication through PHP? In other words, I have a PHP page that will
get the username and password off a database and will then login
through HTTP authentication to access a second page (say an HT
--- Scott Taylor <[EMAIL PROTECTED]> wrote:
> What is the easiest way to access a page that is protected by HTTP
> basic authentication through PHP?
You should be able to indicate the username and password in the URL:
http://username:[EMAIL PROTECTED]/path/to/script.php
Hope that helps.
Chris
Jay Blanchard wrote:
Or colons. It is a Bad Practice[tm] to use any special characters in
user names and/or passwords. It is not universally allowed from OS to OS
I disagree with this : special characters are useful to have better
passwords (more difficult to crack), but as apache stores the so
[snip]
I think I can remember semi-colon is not allowed in apache logins or
passwords...
>But the above is not working when the $username contains a trailing
>semicolon
>or when the $password is starting with a semicolon,
>Ex: what if the $username ="chandu:"
[/snip]
Or colons. It is a Bad Pract
I think I can remember semi-colon is not allowed in apache logins or
passwords...
Chandu Nannapaneni wrote:
hello all ,
I'm able to get successfully http authenticated from my php scripts
Ex :
$header = "POST /myscript.php HTTP/1.0\r\nAuthorization: Basic ";
$header .= base64_encode("$us
Hi,
> But the above is not working when the $username contains a trailing
> semicolon
> or when the $password is starting with a semicolon,
> Ex: what if the $username ="chandu:"
>
> Is there any solution for this ?
You could use str_replace to strip those before they get used.
-Dan Jos
>From: "vic" <[EMAIL PROTECTED]>
> Sent: Saturday, August 10, 2002 11:24 AM
>Subject: [PHP] HTTP authentication - de authentication
> How does one logout from such an authentication?
There's no way to logout. Use a session based authentication.
--
PHP General Mailing List (http://www.php.
Hi,
Thanks for the explaination. But that code does not
pop up any login window. Do I need to do any settings
for that??
--- Matt Schroebel <[EMAIL PROTECTED]> wrote:
> > From: Varsha Agarwal
> [mailto:[EMAIL PROTECTED]]
> > Sent: Wednesday, July 10, 2002 4:30 PM
>
> >I thought it will ask som
> From: Varsha Agarwal [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, July 10, 2002 4:30 PM
>I thought it will ask some user name and
> password thing but it just displays me the string
> "text to send if user hits cancel".
> This is the code:
>
> header("WWW-Authenticate: Basic realm=\"My
the HTTP authentication of using a form uses Sessions!
Check out the following URL:
http://www.devshed.com/Server_Side/PHP/Commerce2/
I followed the above URL to create a user authentication page using
Sessions.
Peter
On Mon, 22 Oct 2001, [ISO-8859-1] Stig-Ørjan Smelror wrote:
> Wilbert Ens
Wilbert Enserink wrote:
> Hi all,
>
>
> is it possible to do a HTTP Authentication with my own loginform instead of
> using the ugly pop up window?
>
>
> regards,
>
> Wilbert
>
With a lot of thought, yes.
You need to consider a few factors before you start.
Security: Checking the IP addr
how secure is either method? the form method would be more secure if it
was done over https correct?
tonyz
Martín marqués wrote:
>
> On Lun 01 Oct 2001 19:36, you wrote:
> > I used a pretty basic system to check HTTP authentication values against
> > database values, but I can't seem to find a
$PHP_AUTH_USER is filled in based on the value coming from the browser.
unsetting it in PHP makes no sense as the browser is simply going to set
it again on the next request. There is no way to clear this from the
client-side short of changing the realm or denying the authentication with
a 403.
On 23-Sep-2001 Jeff Bristow wrote:
> I am trying to write a php script that will work around a http
> authentication that I do have access to. I am trying to do this so that a
> form process in my control panel can automatically have information sent to
> it from a form that a user will fill out.
Well the actual problem is that this file is behind a http authenticated
directory. I actually don't want the users to know the login and password
for it since it is the login for my control panel for my website. However, I
do want to be able to execute a url, this is to allow users to create thei
if you just want to output the file to the user,
readfile("http://server.com/greendocks/locked/useradd.htm?user=blah&pass=blah";);
should work. If you want to play with the file first, file() will put it in
an array, fopen() will create a file pointer to it, you could create your
very own HTTP
Won't sending a 401 header do the trick?
Not sure, but worth a try.
Cheers
Jon
-Original Message-
From: Boris [mailto:[EMAIL PROTECTED]]
Sent: 31 August 2001 13:08
To: [EMAIL PROTECTED]
Subject: [PHP] HTTP authentication
Is there a way to force re-authentication without closing an
this seems to make my browsers not cache.
header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
header("Last-Modified: " . gmdate("D, d M Y H:i:s") . " GMT");
header("Cache-Control: no-cache, must-revalidate");
header("Pragma: no-cache");
then add
header("WWW-Authenticate: Basic realm='$
On 08-May-01 Mauricio Souza Lima wrote:
>
> Cool, you have found another way!
> So the realm make diference? A user loged in a realm isn't the same in
> other realm? Very cool...
Not quite, the realm is a string to present to the login dialog box
it has no effect on the credentials in this exam
Cool, you have found another way!
So the realm make diference? A user loged in a realm isn't the same in
other realm? Very cool...
Explain better your solution to us.
Regards,
Don Read wrote:
>
> On 07-May-01 Mauricio Souza Lima wrote:
>
> > And you have to inform the user to clean the passwo
On 07-May-01 Mauricio Souza Lima wrote:
> And you have to inform the user to clean the password field, click ok,
> then the pop-up will open again, then user click in cancel.
>
> I just know that way to do. If anyone know another way, Postit!
>
create a tmp directory
logoff.php3:
/)
- GameDesign, the industry source for game design and development issues
> -Original Message-
> From: Robert Covell [mailto:[EMAIL PROTECTED]]
> Sent: Monday, May 07, 2001 9:14 AM
> To: Martín Marqués; elias
> Cc: [EMAIL PROTECTED]
> Subject: RE: [PHP] HTTP authentication :
Owner
Rolet Internet Services, LLC
Web: www.rolet.com
Email: [EMAIL PROTECTED]
Phone: 816.210.7145
Fax: 816.753.1952
-Original Message-
From: Martín Marqués [mailto:[EMAIL PROTECTED]]
Sent: Monday, May 07, 2001 2:13 AM
To: elias
Cc: [EMAIL PROTECTED]
Subject: Re: [PHP] HTTP authentication : l
On Mar 08 May 2001 02:07, you wrote:
> Never tried it though...but can you try to empty or unset the
> $PHP_AUTH_USER/PWD ?
This doesn't work, thats why I use a login html page and sessions. :-)
Saludos... :-)
--
El mejor sistema operativo es aquel que te da de comer.
Cuida tu dieta.
-
$PHP_AUTH_USER = "";
$PHP_AUTH_PW = "";
Ought to do it.
> From: Thomas Edison Jr. [mailto:[EMAIL PROTECTED]]
> Sent: Monday, May 07, 2001 8:39 AM
> To: [EMAIL PROTECTED]
> Subject: [PHP] HTTP authentication : logout!!!
> Now i woul like to create a logout link after clicking
> on which, whene
It dont work, what you have to do is that:
In the logout.php:
--
Logout Sucessful
--
And you have to inform the user to clean the password field, click ok,
then the pop-up will open again, then user click in cancel.
I just know that way to do. If anyone know another w
Never tried it though...but can you try to empty or unset the
$PHP_AUTH_USER/PWD ?
-elias
http://www.eassoft.cjb.net
""Thomas Edison Jr."" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> i'm using http authentication for my php pages
> (members area). Once you
Superb tutorial on Zend:
http://www.zend.com/zend/tut/authentication.php
HTH
Jon
-Original Message-
From: Thomas Edison Jr. [mailto:[EMAIL PROTECTED]]
Sent: 26 April 2001 13:03
To: [EMAIL PROTECTED]
Subject: [PHP] HTTP authentication for username & password
How can I use the HTTP auth
I'm sure this wont' help, but just in case you may have missed the obvious
(it happens sometimes)..Make sure you PHP script has the extension .PHP
.. The server won't recognize it as a PHP file otherwise, and it won't know
what to do with it. Also this extension has to be registred properly on th
On Wed, Feb 14, 2001 at 11:07:46PM -0800, Thomas Edison Jr. wrote:
> The code I'm entering is:
>
> if(!isset($PHP_AUTH_USER)) {
> Header("WWW-Authenticate: Basic realm=\"My Realm\"");
> Header("HTTP/1.0 401 Unauthorized");
> echo "Text to send if user hits Cancel button\n";
> exit;
> } else {
>
El Mié 14 Feb 2001 13:44, Chris Lee escribió:
> Ive found the same thing and currently do not have a workaround, it seems
> that browsers cache this. one method Ive thought of and never tested is to
> set a session variable, cross reference that SessionID, PHP_AUTH_PW,
> PHP_AUTH_USER are all vali
El Mié 14 Feb 2001 13:04, Toby Miller escribió:
> Sorry, I meant common header, not footer.
>
> Inside my common "header" on my site ..
> (which also includes the same "header") ...
Don't worry, I understood it. ;-)
--
System Administration: It's a dirty job,
but someone told I had to
El Mié 14 Feb 2001 12:37, Toby Miller escribió:
> Hey all,
Hi,
This is far to long, so I'll strip a part of it.
> Now if I try to read the $PHP_AUTH_USER or $PHP_AUTH_PW variables anyplace
> on the site they don't exist, until I go back to one of the protected
> pages. Then they miraculously re-
o see cached pages from logged
in sessions, but I guess you can't have everything. :-)
Thanks,
Toby
- Original Message -
From: "Chris Lee" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, February 14, 2001 11:44 AM
Subject: Re: [PHP] HTTP Authentication
Ive found the same thing and currently do not have a workaround, it seems
that browsers cache this. one method Ive thought of and never tested is to
set a session variable, cross reference that SessionID, PHP_AUTH_PW,
PHP_AUTH_USER are all valid, if not then your not loged in correctly. to log
out
Sorry, I meant common header, not footer.
Inside my common "header" on my site ..
(which also includes the same "header") ...
- Original Message -
From: "Toby Miller" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, February 14, 2001 10:37 AM
Subject: [PHP] HTTP Authe
>OK, I loaded PHP with the ISAPI filter, but still no luck with
authentication..
Did you reboot? It is Windows...
I think will tell you if you are actually using ISAPI or
CGI or not... Maybe.
--
Visit the Zend Store at http://www.zend.com/store/
Wanna help me out? Like Music? Buy a CD: ht
rized: d:/program files/php/php.exe".
Do you know what is the matter?
Thanks in advance.
Nick.
- Original Message -
From: Shane McBride <[EMAIL PROTECTED]>
To: Nick Kostirya <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Wednesday, February 07, 2001 7:06 PM
Subject: Re:
Nick,
I'm not sure were you are getting the value of $PHP_AUTH_USER from, so you
might want to try this snippet. This causes a dialog box to open and ask for
a username/password.
Also, in your code: you do not need to escape the quotes in the header.
- Original Message -
From: "Nick K
50 matches
Mail list logo
