ID: 21620 User updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: Feedback +Status: Closed Bug Type: Scripting Engine problem Operating System: Redhat 6.2 PHP Version: 4.3.0 New Comment:
Forget about it. I just noticed that the .htaccess file contained <LIMIT GET> require valid-user </LIMIT> After deleteing the <LIMIT GET> and </LIMIT> tags the post version also worked. The $PHP_AUTH_USER worked even though the <LIMIT > tags were there, but the $REMOTE_USER obviously does not. Forgive me for not thinking of this earlier. Previous Comments: ------------------------------------------------------------------------ [2003-01-13 12:18:40] [EMAIL PROTECTED] Which web version of Apache? I don't see anything on the PHP side of things that would make this behave differently based on the request type. ------------------------------------------------------------------------ [2003-01-13 11:36:29] [EMAIL PROTECTED] In PHP 4.3.0 in safe mode the $PHP_AUTH_* variables do not exist anymore. It is recommended to use $REMOTE_USER instead. The suggestion that $REMOTE_USER still works and can be used in Safe mode is only party true. I noticed that this variable is filled with the username supplied by the external basic auth mechanism (.htaccess) unless you are in a script which has been called by a <form action=XXX method="post">. With method="get" it works OK. I need the $REMOTE_USER to lookup users from the database and find their ID in the DB. The method="get" option is a workaround, but this does not work in upload scripts, which has to use "post". Is this a new bug? ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=21620&edit=1