HTaccess integration hack... a beginning ?

It would be great if there were some hack to integrate vbulletin's user database with htaccess...

that would do the following things:[list=1][*]Vbulletin would seamlessly control htaccess as well as vbulletin user databases (for example.. u change password in vbulletin it also changes htaccess pass, or when u reg new user in vbulletin it would also create necessary htaccess user, etc..)[*]When users login with htaccess vbb automatically logs them in using the information that the user inputed for htaccess login[/list=1]

I just came across this script written for phpNuke that checks to see if a user logs in with htaccess and if they login with htaccess it will automatically log them in to phpNuke. I thought that much of this could be reused to work with vbulletin. Its only a portion of what would be required for a full htaccess integration hack but its a start anyway.

Im am just starting to learn php and dont have the necessary time or knowledge to create this hack but Im sure alot of ppl would benefit from it, and would all be very appreciateive if someone would create one.

Here is the source:

PHP Code:

<?PHP

/************************************************************************/
/*  Automatic recognition and connection of a user who connects to a    */
/*  PHPNuke site with a htaccess file.                                  */
/* ==================================================================== */
/*                                                                      */
/* Copyright (c) 2001 by Thomas Rudant (thomas.rudant@grunk.net)        */
/* [url]http://www.grunk.net[/url]                                                 */
/* [url]http://www.securite-internet.org[/url]                                     */
/*                                    */
/* This program is free software. You can redistribute it and/or modify */
/* it under the terms of the GNU General Public License as published by */
/* the Free Software Foundation; either version 2 of the License.       */
/************************************************************************/


if(!isset($mainfile)) { include("mainfile.php"); }

function docookie($setuid, $setuname, $setpass, $setstorynum, $setumode, $setuorder, $setthold, $setnoscore, $setublockon, $settheme, $setcommentmax) {
    $info = base64_encode("$setuid:$setuname:$setpass:$setstorynum:$setumode:$setuorder:$setthold:$setnoscore:$setublockon:$settheme:$setcommentmax");
    setcookie("user","$info",time()+15552000);
    
    global $user;
    $user=$info;
    
}

function login($uname, $pass) {
    global $setinfo,$system;
    dbconnect();
    $result = mysql_query("select pass, uid, storynum, umode, uorder, thold, noscore, ublockon, theme, commentmax from users where uname='$uname'");
    if(mysql_num_rows($result)==1) {
        $setinfo = mysql_fetch_array($result);
        $dbpass=$setinfo[pass];
        
        if(!$system)
             $pass=crypt($pass,substr($dbpass,0,2));

        if (strcmp($dbpass,$pass)) {
                        Header("Location: user.php?stop=1");
                        return;
                }

        docookie($setinfo[uid], $uname, $pass, $setinfo[storynum], $setinfo[umode], $setinfo[uorder], $setinfo[thold], $setinfo[noscore], $setinfo[ublockon], $setinfo[theme], $setinfo[commentmax]);
    }
}

if ($user)
{
    global $cookie;
    
    cookiedecode($user);
    $username = $cookie[1];

    if ($PHP_AUTH_USER!=$username)
    {
        setcookie("user");
        login ($PHP_AUTH_USER,$PHP_AUTH_PW);
    }
}
else
{
    login ($PHP_AUTH_USER,$PHP_AUTH_PW);
}

?>

[merk]

A simple method:

PHP Code:

/* get user auth information into an array ie $userpass['username'] = pass */

if($userpass[$PHP_AUTH_USER] == $PHP_AUTH_PW)
{
continue;
}
else
{
//send headers to cause browser to request user and pass from user
header("WWW-authenticate: Basic realm=\"realm name\"");
header("HTTP/1.0 401 Unauthorized");

print("notice that the user isnt authorised");
} 


[fragbait]

heh i dont have access to editing apache modules for my server, but merk, i was actually look for a php method, do i just put that into a script, and it works, don i have to have any modules?

[merk]

I see no need for this hack, but no, thats a simple bit

you would need to add more code.

Im really not going to bother because this hack is basically pointless

[fragbait]

oh ok thanks anyway, anybody think they can finish this?

[Steve Machol]

fragbait,

Could you please enter your vB license info into your use profile? See my sig for details. Thanks.

[fragbait]

sorry, im makin this script for the vbb board of someone else, ill try to ask him for his lisence, wait that wouldnt be right, ill try to get him to come post it i guess, k lemme mail him now....