> > I haven't tried it, but you should just be able to get the > Authorization http header (via the apache request) and base64 > decode it, giving you a 'username:password' string. >
That will work, ($ret, $pw) = $req_rec -> get_basic_auth_pw ; Will do it for you (see perldoc Apache). > Of course, Basic Authentication is evil, and should only be > used for toy projects (since it doesn't scale) over HTTPS. > I see that, since password is transmitted in clear text, it is a security problem in http, but where is the problem with https? Gerald --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]