You should use sessions for this...however, i would not store the
password in the session...
And verify it that way...i would probably use all sessions for this...
Check sessions first and see...if not then do the mysql or apache
auth...
When you do sessions you can save the page they are trying to access,
then have them login (authenticate), then redirect to the page that they
wanted...
If you are unfamiliar about sesssions:
1. php.net
2. phpbeginner.com
3. phpbuilder.com
4. php.net archives
5. google
On Thu, 2002-11-14 at 18:09, [EMAIL PROTECTED] wrote:
> I can set the $_SERVER['PHP_AUTH_USER'] and $_SERVER['PHP_AUTH_PW']
> easily enough but how would you pass that information along with the
> redirect so apach doesn't prompt you for username and password? I have
> tried the header("Location http://usernam:password@;URL") method and it
> always prompts as well.
>
> Thanks,
>
> Ed
>
>
> On 14 Nov 2002, BigDog wrote:
>
> > Ed,
> >
> > When you do auth with mysql and they succeed then u can set the
> > $_SERVER['PHP_AUTH_USER'] and in theory that should allow you to connect
> > to the directory because that should be set for apache http
> > authentication.
> >
> > You might have to play with it, but i am sure you can get it to work.
> >
> >
> > On Thu, 2002-11-14 at 16:42, [EMAIL PROTECTED] wrote:
> > > I'm now understanding how you can get PHP to present you with a username
> > > and password promt just like APache would do if you had a .htaccess file
> > > in the directory you were trying to enter. Great idea but it seems that it
> > > would be easier to just use the .htaccess file in the directory.
> > >
> > > What I've been trying to find out is how to pass through a .htaccess file
> > > if someone has already passed an database authentication lookup in PHP.
> > >
> > > I have an area on my site "Special Publications" where users login and
> > > their username and password is checked against a MySQL database. One field
> > > in their user records is the URL to their directory on our server. Each
> > > one of these directories is protected via .htaccess. What I would really
> > > like to do is have them redirected to their URL if they pass
> > > authentication and not have them enter their username and password again.
> > > Is their a way to do this?
> > >
> > > Thanks,
> > >
> > > Ed
> > >
> > >
> > >
> > > On Wed, 13 Nov 2002, Ewout de Boer wrote:
> > >
> > > > in httpd.conf
> > > >
> > > > <Directory /scriptdir>
> > > > AllowOverride AuthConfig
> > > > </Directory>
> > > >
> > > >
> > > > More info at http://httpd.apache.org/docs/mod/core.html#allowoverride
> > > >
> > > >
> > > > regards,
> > > >
> > > > Ewout
> > > >
> > > >
> > > > ----- Original Message -----
> > > > From: "Alexander Bemme" <[EMAIL PROTECTED]>
> > > > To: <[EMAIL PROTECTED]>
> > > > Sent: Wednesday, November 13, 2002 12:02 PM
> > > > Subject: [PHP] PHP Auth with Apache
> > > >
> > > >
> > > > > Hi,
> > > > > i got a little problem (i hope so)
> > > > >
> > > > > I have installed Apache 1.3.26 and PHP 4.2.3 as module.
> > > > >
> > > > > I used the example from www.php.net to do a PHP authentication,
> > > > > but it didn't work, the pop appears but i can't login.
> > > > >
> > > > > In PHPManual is someting about "AuthType" but nothing about how
> > > > > to fix it.
> > > > >
> > > > > Can someone help out?
> > > > >
> > > > > Thanks
> > > > >
> > > > > --Alex
> > > > >
> > > > >
> > > > >
> > > > > --
> > > > > PHP General Mailing List (http://www.php.net/)
> > > > > To unsubscribe, visit: http://www.php.net/unsub.php
> > > > >
> > > > >
> > > > >
> > > >
> > > > --
> > > > PHP General Mailing List (http://www.php.net/)
> > > > To unsubscribe, visit: http://www.php.net/unsub.php
> > > >
> > --
> > .: B i g D o g :.
> >
> >
> >
> > --
> > PHP General Mailing List (http://www.php.net/)
> > To unsubscribe, visit: http://www.php.net/unsub.php
> >
--
.: B i g D o g :.
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
