Sorry if I'm asking really basic questions here, but I'm dealing with a programmer who is on sabbatical in Poland, and is doing the work in his spare time there, (so I can't talk to him on the phone) and he loves to blind people with jargon. So he'll give me gobbledegook and I'll have to decipher it. He wont change anything on his side of the site, I'll have to do all the adjusting to fit what he's doing. That's how it is.
Anyway ... are "Basic Authentication" and "Digest Authentication" the terms the .aspx programmer will know it by? And to hand back to the .aspx site a user who's still showing as authenticated, all I have to do is use <cfheader to include whatever headers were included with the .aspx page that the user came over with. Is that right? Cheers, Michael Kear Windsor, NSW, Australia AFP Webworks. -----Original Message----- From: Jochem van Dieten [mailto:[EMAIL PROTECTED] Sent: Monday, 23 June 2003 9:46 PM To: CF-Talk Subject: Re: Passing session from .aspx to .cfm and back Mike Kear wrote: > What will be in the header if they are authenticated? Depends. If you do Basic Authentication there will be a header named "Authorization" and the value will be the Base64 encrypted "username:password" string. If you do Digest Authentication, it will be a comma separated list of variable=value pairs, that have a hashed version of the password (amongst other things). Check RFC 2617. Jochem ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4 FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Get the mailserver that powers this list at http://www.coolfusion.com Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
