Re: htaccess and a login "page"

by "Jason Boudreault" <theunforgiven(at)home.com>

 Date:  Wed, 26 Sep 2001 11:33:21 -0600
 To:  "Hank Marquardt" <hmarq(at)yerpso.net>
 Cc:  <hwg-techniques(at)hwg.org>
 References:  servers yerpso
  todo: View Thread, Original
Another thing you COULD do, if you really wanted to.. it wouldn't be that
secure though..

Make a form on the page for the user/pass, have a javascript take that user
pass, and when you click submit go to this:
http://USER:PASS(at)mydomain.com/securedocuments/.

It would do the same thing as the popup window, except the user:pass@ before
the address makes the webserver know the user pass so it doesnt prompt for
it

- j

----- Original Message -----
From: "Hank Marquardt" <hmarq(at)yerpso.net>
To: "Jeniffer C. Johnson" <lead(at)offlead.com>
Cc: <hwg-techniques(at)hwg.org>
Sent: Wednesday, September 26, 2001 10:39 AM
Subject: Re: htaccess and a login "page"


> You'll have to resort to some form of scripting and session management to
do that -- how exactly depends on what you have to work with: will the
user/passwords be in a db? .. if so what kind; or just a text file? (is it
the standard unix one if on unix)?; what language support does the server
have (and skill of the programmer/designer) ... you can do this in about any
scripting language, but your choice will be limited by what you have access
to and what your skills are.
>
> The basic coding drill is this though ...
>
> On the form handler (from your custom login form), test for a valid user;
if successful, establish a 'session' key for them and redirect to the
'members only' area.
>
> On all the members only areas you have a little code stub at the top of
each page that says "is there a valid session for this request?", if yes,
allow access, if no, redirect to the login page.
>
> HTH.
>
> On Wed, Sep 26, 2001 at 11:30:17AM -0400, Jeniffer C. Johnson wrote:
> > Hello List,
> >
> > I don't know if this is possible or not, but here's what I'd like to
accomplish. I've got a directory that is password protected using htaccess
for members only. When a member clicks on a "login now" link, I would like
the user to be presented with a nice tidy html page with the login form and
a "submit" button, rather than the popup dialogue box for entering username
and password. Is this doable? If so, how exactly do I accomplish it?
> >
> > TIA,
> > Jeniffer
> >
> >
> > Jeniffer C. Johnson
> > OffLead Productions
> > www.offlead.com
> >
> > ###########################
> >
>
> --
> Hank Marquardt <hank(at)yerpso.net>
> http://web.yerpso.net
>
> Web & Database Development in PHP, MySQL/PostgreSQL
> Small Office Networking Solutions - Debian GNU/Linux & FreeBSD
> PHP Instructor - HTML Writers Guild <http://www.hwg.org>
> *** Beginning PHP -- Starts August 20, 2001
> *** http://www.hwg.org/services/classes/p171.3.html
>
>

HWG hwg-techniques mailing list archives, maintained by Webmasters @ IWA