Re: [PHP] Where is my REMOTE_USER?
At 16:42 30/8/2002 +1200, David Robley wrote: In article [EMAIL PROTECTED], [EMAIL PROTECTED] says... Is this snippet from the docs possibly relevant? Chapter 17. HTTP authentication with PHP The HTTP Authentication hooks in PHP are only available when it is running as an Apache module and is hence not available in the CGI version. I think the HTTP Authentication hooks are something a little different but the problem might be related. My other settings actually worked well for a long time, then I upgraded Apache PHP and gone were the remote_user. Thank you for drawing my attention to the relevant passage. Frank -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] Where is my REMOTE_USER?
Hi, when logging in with username and password with the good old Require user mechanism in Apache I could earlier see the name of the user logging in as $REMOTE_USER. But it seems now to have disappeared. It seems to be nowhere, neither as $GLOBALS['REMOTE_USER'] $_SERVER['REMOTE_USER'] $_ENV['REMOTE_USER'] or in the older $HTTP_SERVER_VARS['REMOTE_USER'] or in any of the other superglobals. Did it possibly fall out of the PHP implementation? Or should it be there and I am overlooking something? Thanks! Frank U5.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Where is my REMOTE_USER?
Frank, et al -- ...and then Frank said... % % Hi, % % when logging in with username and password with the good old Require user % mechanism in Apache I could earlier see the name of the user logging in as % $REMOTE_USER. This sort of thing has come up on the list frequently. You should set register_globals = on in your php.ini file and kick your web server. HTH HAND :-D -- David T-G * It's easier to fight for one's principles (play) [EMAIL PROTECTED] * than to live up to them. -- fortune cookie (work) [EMAIL PROTECTED] http://www.justpickone.org/davidtg/Shpx gur Pbzzhavpngvbaf Qrprapl Npg! msg77050/pgp0.pgp Description: PGP signature
Re: [PHP] Where is my REMOTE_USER?
At 06:03 29/8/2002 -0400, David T-G wrote: Frank, et al -- ..and then Frank said... % % Hi, % % when logging in with username and password with the good old Require user % mechanism in Apache I could earlier see the name of the user logging in as % $REMOTE_USER. This sort of thing has come up on the list frequently. You should set register_globals = on in your php.ini file and kick your web server. HTH HAND But! Two things: 1. register_globals were already turned on 2. Surely the PHP designers would not force users to have such a major security advantage turned off for getting a variable that is a true apache-var? So problems remains: Where did the REMOTE_USER go? I am BTW running Apache 2.0 with PHP 4.2.2 as a CGI-module. When it worked last time I was only running Apache 1.3.26. Maybe the Apache-guys changed something?! Could be a RTFM-case... Well, probably I should drop using Apache's old auth-sceme and run all in PHP anyway. Thank you for the input. Best Frank U5com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] Where is my REMOTE_USER?
In article [EMAIL PROTECTED], [EMAIL PROTECTED] says... At 06:03 29/8/2002 -0400, David T-G wrote: Frank, et al -- ..and then Frank said... % % Hi, % % when logging in with username and password with the good old Require user % mechanism in Apache I could earlier see the name of the user logging in as % $REMOTE_USER. This sort of thing has come up on the list frequently. You should set register_globals = on in your php.ini file and kick your web server. HTH HAND But! Two things: 1. register_globals were already turned on 2. Surely the PHP designers would not force users to have such a major security advantage turned off for getting a variable that is a true apache-var? So problems remains: Where did the REMOTE_USER go? I am BTW running Apache 2.0 with PHP 4.2.2 as a CGI-module. When it worked last time I was only running Apache 1.3.26. Maybe the Apache-guys changed something?! Could be a RTFM-case... Well, probably I should drop using Apache's old auth-sceme and run all in PHP anyway. Thank you for the input. Best Frank U5com Is this snippet from the docs possibly relevant? Chapter 17. HTTP authentication with PHP The HTTP Authentication hooks in PHP are only available when it is running as an Apache module and is hence not available in the CGI version. -- David Robley Temporary Kiwi! Quod subigo farinam -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php