Basic 401 Authentication Library

Basic 401 Authentication Library

El Forum
Unregistered

12-24-2008, 05:58 PM

[eluser]cfraz[/eluser]
Nice and simple - I'm doing something similar for Windows Integrated Authentication on an intranet application that runs on IIS.

Take a look at the CI input library.

Code:
$this->input->server('PHP_AUTH_USER');

filters input, returns false if it's not set, and optionally screens xss content. I'm not sure but that might be a vulnerability for PHP_AUTH_USER?

Also, I think that parameter is only returned for Apache running PHP module, so it limits applicability.

Messages In This Thread

Basic 401 Authentication Library - by El Forum - 12-24-2008, 10:15 AM

Basic 401 Authentication Library - by El Forum - 12-24-2008, 10:59 AM

Basic 401 Authentication Library - by El Forum - 12-24-2008, 05:58 PM

Basic 401 Authentication Library - by El Forum - 01-06-2009, 10:57 AM

Basic 401 Authentication Library - by El Forum - 01-06-2009, 12:36 PM

Basic 401 Authentication Library - by El Forum - 02-05-2009, 05:02 PM

Basic 401 Authentication Library - by El Forum - 03-04-2009, 01:02 PM

Basic 401 Authentication Library - by El Forum - 03-04-2009, 05:50 PM

Basic 401 Authentication Library - by El Forum - 02-01-2011, 11:27 PM