-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi,
we have the following situation: We want to use sqwebmail as a webmail-frontend for our users. but the webmail should bee included in a paid content part of our page. The users login in by a php-generated login-page, and if once successfully authenticated, they no longer need to enter their password, until they logout form our paid content part. We want to hide the username/password loginpage from sqwebmail from our users, so we programmed a php generatd html-form with the same contentd like the one generated from sqwebmail-login-page, fset the fields name and password from the contents of our mysql-database und do a submit by javascript onload. This way, the sqwebmail login page gets filled in automaticaly and the submit gets send automatically for the users. the are logged in automatically. Perhaps, you can tell me a better way to do this. Our problem is this: If the user presses the logout-link within sqwebmail, he can login over and over again, after a logout. when we test it with severel different users at the same time without logging out, the sqwebmail-authdaemon seems to get in trouble then every attempt to login fails. the sqwebmail generates a html-page with the username und password form and calims that username and password are wrong. Even if I start the sqwebmail direkt, and type in username and password in the by sqwebmail generated login-form, it tells me that username and password is not correct. only a "/usr/local/sqwebmail/current/libexec/authlib/authdaemond.plain restart" helps to solve the problem. Sure, I can repeat this every minute on our mailserver, but thats not a good idea ;-) Perhaps you can tell me some more detail how sqwebmail works. The username is the full email-adress, because we use vpopmail with several different domains. I changed the lines in /usr/local/sqwebmail/current/authdaemonrc to authmodulelist="authvchkpw" authmodulelistorig="authvchkpw" Could you tell me a way to change the behavour from sqwebmail to server our needs. Here ist the source of the php-generated html-form: <html> <head> </head> <body onLoad='document.loginform.submit()'> <!-- <body bgcolor='#e8e8e8'> --> <div align='center'> <form name="loginform" action="https://111.111.111.111/cgi-bin/sqwebmail?noframes=1"; method="post"> <input type="hidden" name="username" value="<?php echo $email; ?>"> <input type="hidden" name="password" value="<?php echo $userpass; ?>"> <input type="hidden" name="sameip" value="off"> <input type='image' src='https://111.111.111.111/images/sqwebmail/logo.gif' width='100' height='100' name='do.login'> </form> <p class='normal' algin='center'> Sie werden jetzt in das Webmail-Sytem eingeloggt.<br> Sollten Sie hier steckenbleiben, klicken Sie bitte auf das Logo... </p> </div> </body> </html> - -- Alexander Bruns <[EMAIL PROTECTED]> System Administrator Sports & Bytes GmbH http://www.sports-and-bytes.de -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iQD1AwUBPxgoTClqNI9aCvITAQJN9gcAh5nA3l0vLuql+2w0yTQCpw2Ngc/z/Bp3 qG3471lO7mfVOR+UvhZphyjzgMlRb7mKX8FmS80YqSJ6nn7/aiX8ztBAtZZbL/dR rt3+IM7DU8zZqGO+MjaadzXdnXSVp9zOUOfio1w8Ho68Y6oboafeHnav8r1gBjWv 6vIHZqm+WpUidfeMKcScmNEZwf9JbH12twjhXMjF/zbvwEz5G2maXD10fc0MKosn +Hf8mFWKn6EBsiymPic9LKWHqkFhtHZlO58YkBiawKwBIxcTkEWU15wHdk0kI2Aw rDm1GQ82p2I= =GqG2 -----END PGP SIGNATURE-----
