vb.org Archive - Members area popup

Page 2 of 2

Show 40 post(s) from this thread on one page

vb.org Archive (https://vborg.vbsupport.ru/index.php)

- vB3 Programming Discussions (https://vborg.vbsupport.ru/forumdisplay.php?f=15)

- - Members area popup (https://vborg.vbsupport.ru/showthread.php?t=53902)

filburt1

06-08-2003 01:59 AM

Quote:

Today at 04:34 PM MUG said this in Post #9
$_SERVER['PHP_AUTH_USER'] and $_SERVER['PHP_AUTH_PW']

Important to note that $_SERVER['PHP_AUTH_PW'] is the unhashed/unencrypted/plain text version of the password, so obviously never display it on a page. ;)

Dean C

06-08-2003 09:08 AM

HTTP authentication eh ;)...

Dean C

06-08-2003 10:23 AM

Ok i did a little research into this earlier today using the functions given on php.net...

It's very odd i must say...

For starters you're not comparing usernames from anywhere and seeing if the login is correct. I simply put anything in the box and it works...

Am i missing something here ;)?

- miSt

MUG	06-08-2003 10:59 AM

Here is a very simple example that doesn't check anything against a database.

PHP Code:


		
			
if(ini_get('register_globals') == false) {

  extract($HTTP_SERVER_VARS);

}



if(!isset($PHP_AUTH_USER, $PHP_AUTH_PW) or $PHP_AUTH_USER != 'username' or $PHP_AUTH_PW != 'seekrit') {

  header("HTTP/1.0 401 Authorization Required");

  header('WWW-Authenticate: Basic realm="please login"');

  die('You entered an incorrect username/password combination.');

}

Username/User ID is 'username'
Password is 'seekrit'

Dean C

06-08-2003 11:08 AM

Ok that works pretty well.. i'm pretty sure i can modify that myself to work with a user database... however where do i change the code so for example it does something when its logged in...

I.e. displays a message "You are logged in" if the authentication works :)

- miSt

MUG	06-08-2003 11:11 AM

Quote:

Today at 08:08 AM Mist said this in Post #15
Ok that works pretty well.. i'm pretty sure i can modify that myself to work with a user database... however where do i change the code so for example it does something when its logged in...

I.e. displays a message "You are logged in" if the authentication works :)

- miSt

PHP Code:


		
			
if(ini_get('register_globals') == false) {

  extract($HTTP_SERVER_VARS);

}



if(!isset($PHP_AUTH_USER, $PHP_AUTH_PW) or $PHP_AUTH_USER != 'username' or $PHP_AUTH_PW != 'seekrit') {

  header("HTTP/1.0 401 Authorization Required");

  header('WWW-Authenticate: Basic realm="please login"');

  die('You entered an incorrect username/password combination.');

}



echo "You are logged in.";

All times are GMT. The time now is 08:38 AM.

Page 2 of 2

Show 40 post(s) from this thread on one page

X vBulletin 3.8.12 by vBS Debug Information
Page Generation 0.01183 seconds Memory Usage 1,737KB Queries Executed 10 (?)
More Information
Template Usage: (1)ad_footer_end (1)ad_footer_start (1)ad_header_end (1)ad_header_logo (1)ad_navbar_below (2)bbcode_php_printable (2)bbcode_quote_printable (1)footer (1)gobutton (1)header (1)headinclude (6)option (1)pagenav (1)pagenav_curpage (1)pagenav_pagelink (1)post_thanks_navbar_search (1)printthread (6)printthreadbit (1)spacer_close (1)spacer_open Phrase Groups Available: global postbit showthread	Included Files: ./printthread.php ./global.php ./includes/init.php ./includes/class_core.php ./includes/config.php ./includes/functions.php ./includes/class_hook.php ./includes/modsystem_functions.php ./includes/class_bbcode_alt.php ./includes/class_bbcode.php ./includes/functions_bigthree.php Hooks Called: init_startup init_startup_session_setup_start init_startup_session_setup_complete cache_permissions fetch_threadinfo_query fetch_threadinfo fetch_foruminfo style_fetch cache_templates global_start parse_templates global_setup_complete printthread_start pagenav_page pagenav_complete bbcode_fetch_tags bbcode_create bbcode_parse_start bbcode_parse_complete_precache bbcode_parse_complete printthread_post printthread_complete
Messages: