[pmwiki-users] Re: Allowing password extraction from URI
Thomas -Balu- Walter
list+pmwiki-users at b-a-l-u.de
Mon Jul 25 10:06:33 CDT 2005
On Mon, Jul 25, 2005 at 10:04:07AM +0200, chr at home.se wrote:
> > AFAIK that is the standard mechanism to provide the server directly with
> > username and password in case it needs HTTP authentication (as in
> > http://www.php.net/manual/en/features.http-auth.php).
> > So
> > header('WWW-Authenticate: Basic realm="My Realm"');
> > header('HTTP/1.0 401 Unauthorized');
> > might need to be sent to get the following two
> > $_SERVER['PHP_AUTH_USER']
> > $_SERVER['PHP_AUTH_PW']
> > This does not work in CGI versions of PHP though and has other drawbacks.
> I'm not sure I follow you completely... are you saying pmwiki.php could
> extract user/password if pmwiki-mode (from within Emacs) appended
> header('WWW-Authenticate: Basic realm="My Realm"');
> header('HTTP/1.0 401 Unauthorized');
> to it's 'http-get' request?
No, sorry - this is simply the default mechanism to authenticate users
in PHP. I guess I misread the thread :)
More information about the pmwiki-users