What you probably want is
http://cpan.org/authors/id/K/KW/KWILLIAMS/Apache-AuthCookie-2.011.tar.gz
It is kinda tricky to use (ie. make sure you have a couple pots of coffee
ready), but it will allow you to create a "custom" form (though html) that
authenications it's self with apache and passes back a session key.
For example say you have directory /hidden_files, that only user "bob" can
view. Create a form and cgi using this, bob logs in, now bob can download
his files without getting that "pop-up" username/password box.
You might want to take a look at:
http://cpan.valueclick.com/modules/by-category/15_World_Wide_Web_HTML_HTTP_C
GI/Apache/
they have a lot of good modules there, if fact I bet your could hack
something like AuthCookie with like radius auth or ldap auth apache modules,
that would be kinda neat.. All these modules are for Perl.
Anyways, hope that helps.
Jack
>
> I am developing an application in which the users have to login thru a cgi
> script. onced logged they need to download certain files wherein i have
> placed htaccess file(for security). This brings up the authorization
> windows and the users have to again login. This causes redundancy.
> Is there any procedure wherein i can authenticate the user directly thru
> the cgi script using the htaccess file but without the authorization
> window.
> one way to do this is using a url like
> http://username:[EMAIL PROTECTED]
> but this shows the password in the url. is there some way i can hide this
> password from the url.
> Thankx.
>
