i'm trying to implement basic HTTP auth using webware on apache (mod_webkit) + win2k and it seems there isn't a clean way to obtain request headers from webware. implementing basic auth is pretty straightforward but the lack of custom request headers makes me
wonder if it is possible at all.
It's possible, it's just all weird and annoying. Here's a standard kind of recipe for Zope:
RewriteCond %{HTTP:Authorization} ^(.*)
RewriteRule ^/wherever/$1 /path/to/wkcgi/$1 [env=HTTP_CGI_AUTHORIZATION:%1,L,PT]
Then you use request().environ().get('HTTP_CGI_AUTHORIZATION'). Apache doesn't send through HTTP auth without this kind of messing around, for tedious security reasons that apply only to situations where people hosted on the same domain do not trust each other, which is a fairly outdated situation at this point.
I'm sure it would be possible for mod_webkit to somehow get this information and pass it through, since it has more access to Apache. But it currently does not. (PHP, for instance, passes this information through)
Ian
------------------------------------------------------- This SF.Net email is sponsored by: IBM Linux Tutorials Free Linux tutorial presented by Daniel Robbins, President and CEO of GenToo technologies. Learn everything from fundamentals to system administration.http://ads.osdn.com/?ad_id=1470&alloc_id=3638&op=click _______________________________________________ Webware-discuss mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/webware-discuss
