Welcome Guest, Not a member yet? Register   Sign In
Need a little help with PHP_AUTH_(USER|PW)
#2

In the manual discussion of HTTP Authentication, there's a user note regarding a workaround for a missing Authorization header. There are also a  few StackOverflow posts about it which tend to eventually come back to this one.

I also missed the following the first time I read through the PHP manual page above (this is in the manual itself, not a user comment):

Quote: In order to prevent someone from writing a script which reveals the password for a page that was authenticated through a traditional external mechanism, the PHP_AUTH variables will not be set if external authentication is enabled for that particular page and safe mode is enabled. Regardless, REMOTE_USER can be used to identify the externally-authenticated user. So, you can use $_SERVER['REMOTE_USER'].

Note: Configuration Note
PHP uses the presence of an AuthType directive to determine whether external authentication is in effect.
Reply


Messages In This Thread
RE: Need a little help with PHP_AUTH_(USER|PW) - by mwhitney - 10-08-2015, 06:49 AM



Theme © iAndrew 2016 - Forum software by © MyBB