ansaurus

Question

REST Authentication in PHP (CodeIgniter)

Answer 1

+2 A:

If you use HTTPS, you can use Basic authentication and it's very easy to do. Just add following code to your controller,

   if (empty($this->input->server('PHP_AUTH_USER')))
   {
       header('HTTP/1.0 401 Unauthorized');
       header('HTTP/1.1 401 Unauthorized');
       header('WWW-Authenticate: Basic realm="My Realm"');
       echo 'You must login to use this service'; // User sees this if hit cancel
       die();
    }

    $username = $this->input->server('PHP_AUTH_USER');
    $password = $this->input->server('PHP_AUTH_PW');

    // Check username and password

I use mod_php, your auth variable names maybe different if using other SAPI modules.

ZZ Coder 2010-05-09 11:57:39

So HTTP is a must, for encrypting plain user name and password in each request. Thx!

zidane 2010-05-09 20:13:16

Answer 2

+2 A:

I have written up a REST Controller to make your REST applications easier to build. You can read all about it on NetTuts: Working with RESTful services in CodeIgniter.

Phil Sturgeon 2010-05-09 22:25:49

This looks like a very comprehensive tutorial, I will read it certainly.

zidane 2010-05-10 07:48:48

Just checked out Phil's tut, great stuff Phil, very informative!

k00k 2010-05-11 12:47:02

You coverd security in REST_Controller! This is great, thx again!

zidane 2010-05-22 20:51:11

I know the article is fairly long but did it rwally take 2 weeks to read? ;-p

Phil Sturgeon 2010-05-23 15:47:28

ansaurus

tags:

views:

answers:

REST Authentication in PHP (CodeIgniter)

related questions