LinuxSA Mailing list archives

  From: David Lloyd <lloy0076@rebel.net.au>
  To  : <linuxsa@linuxsa.org.au>
  Date: Sun, 08 Jul 2001 13:29:21 +0930

Apache and HTTP Authentication

I want to avoid the default authorisation dialog, or series of
questions, in an Apache Basic authentication scheme.

I understand that Netscape et al will send an authenticate header with
the authentication type and authentication details; and that they will
keep on sending that authentication header to any pages within the
authentication realm.

This, of course, implies that I could write a CGI or other dynamic form
that got the user's credentials and sent the appropriate header - please
don't tell me how to do that in detail, I'll look that up in the RFC's
or other manuals.

The only problem is, that the browser won't be aware that I've done this
because it hasn't seen the usual "401" response; hence the moment
someone goes to another page within the protected realm the browser will
probably intercept the request and ask for authentication again.

Is there any way around this?

DSL
-- 
"The greatest thing you'll ever learn is
  just to love and to be loved in return."
  - David Bowie (Nature Boy from Moulin Rouge)

-- 
LinuxSA WWW: http://www.linuxsa.org.au/  IRC: #linuxsa on irc.linux.org.au
To unsubscribe from the LinuxSA list:
  mail linuxsa-request@linuxsa.org.au with "unsubscribe" as the subject