function getUserAuthPW() {
// If present, set user Authenticate Password box values
global $_SERVER;
if (isset($_SERVER["PHP_AUTH_USER"])) {
$username=safestring($_SERVER["PHP_AUTH_USER"]);
$password=safestring($_SERVER["PHP_AUTH_PW"]);
return true;
} else {
header("WWW-Authenticate: Basic realm=\"CaptionKit\"");
header("HTTP/1.0 401 Unauthorized");
echo "You must enter a valid login ID and password to access this resource\n";
exit;
}
}
What this does is to check for PHP_AUTH_USER and if it's not defined, raises a 401 error. The client interprets this as a request to enter user name & password, and brings up the grey box you see using .htaccess / .htpasswd files. The function safestring just adds slashes if there are characters which need escaping for your database (some people might just 'addslashes()' but I do a little more first, like trim and htmlspecialchars).
Cheers - Neil Smith.
Please note : I do not accept email from hotmail, yahoo, AOL or msn accounts. All such mail *will* be bounced and deleted without being read. Thankyou for your understanding.
At 07:36 16/06/2003 +0000, you wrote:
Message-ID: <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Reply-To: "Guru P Chaturvedi" <[EMAIL PROTECTED]> From: "Guru P Chaturvedi" <[EMAIL PROTECTED]> Date: Mon, 16 Jun 2003 01:16:53 +0530 Subject: Re: User Authentication... MIME-Version: 1.0
Hi,
Any clues...please?!
-- PHP Windows Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
