ID: 10464
User Update by: [EMAIL PROTECTED]
Old-Status: Open
Status: Closed
Bug Type: Apache related
Description: PHP_AUTH_PW is not set altough PHP_AUTH_USER is
I figured out that our webmaster took special care
for passwords - we have AFS here and AFS passwords are
often used to authenticate Web stuff.
Therefore he somehow deletes PHO_AUTH_PW before my script
gets executed.
Sorry for the wrong bug - the real bug is that I need to
be able to tell PHP not to reveal passwords already used
by Apache for some kind of authentication.
(This is bug #8827).
Previous Comments:
---
[2001-04-24 03:55:10] [EMAIL PROTECTED]
Update: register_globals is turned on.
(see
http://www-usercgi.tu-chemnitz.de/~tisc/authtest.php3
for output of phpinfo() after authentication.)
---
[2001-04-24 03:49:16] [EMAIL PROTECTED]
The, why is PHP_AUTH_USER set at all?
---
[2001-04-23 17:00:27] [EMAIL PROTECTED]
Sound like you don't have register_globals turned on in your php.ini.
- Colin
---
[2001-04-23 15:26:09] [EMAIL PROTECTED]
I tried to authenticate via PHP. It worked with PHP3.
After tracing back and forth, I found that the global
variable PHP_AUTH_PW is not set or empty.
HTTP_SERVER_VARS[HTTP_AUTH_PW] still contains the
right value.
I do not write to that variable (I checked with grep...)
See http://www-usercgi.tu-chemnitz.de/~tisc/authtest.php3
for a demonstration.
HTH! Tino.
---
Full Bug description available at: http://bugs.php.net/?id=10464
--
PHP Development Mailing List http://www.php.net/
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]