oops - editing below
___cliff rayman___ wrote:
It seems that when a REDIRECT is requested, apache/mod_perl chooses to
call back into itself, or resuse the same connection. In any case,
when certain redirects occur, the session is not written and the next
connection to use the process now has
It seems that when a REDIRECT is requested, apache/mod_perl chooses to
call back into itself, or resuse the same connection. In any case, when
certain redirects occur, the session is not written and the next
connection to use the process now has the same session id and session
data. It is not y
It seems that when a REDIRECT is requested, apache/mod_perl chooses to
call back into itself, or resuse the same connection. In any case, when
certain redirects occur, the session is not written and the next
connection to use the process now has the same session id and session
data. It is not y
On Wed, Sep 14, 2005 at 05:41:35AM +0200, Gerald Richter wrote:
> > Of course, Basic Authentication is evil, and should only be
> > used for toy projects (since it doesn't scale) over HTTPS.
>
> I see that, since password is transmitted in clear text, it is a security
> problem in http, but where
At Tue, 13 Sep 2005 21:33:28 +0200, Dirk Jagdmann wrote:
> Or would it be possible if I code a custom Auth Handler (as shown in the
> mod_perl manual) and then store the password somewhere where I can
> access it from my (Emb)perl code?
Best would be to write a custom auth handler and do whatever
>
> I haven't tried it, but you should just be able to get the
> Authorization http header (via the apache request) and base64
> decode it, giving you a 'username:password' string.
>
That will work,
($ret, $pw) = $req_rec -> get_basic_auth_pw ;
Will do it for you (see perldoc Apache).
> Of
On Tue, Sep 13, 2005 at 09:33:28PM +0200, Dirk Jagdmann wrote:
> I'm currently developing a software which is receiving requests via http
> where username and password are transmitted via HTTP (basic)
> authentication (as base64 encoded string in the HTTP request header).
> The other parameters are
Hello developers,
I'm currently developing a software which is receiving requests via http
where username and password are transmitted via HTTP (basic)
authentication (as base64 encoded string in the HTTP request header).
The other parameters are transmitted as a GET request, thus encoded into
th
