tags:

views:

56

answers:

1
+1  Q: 

How to get in Apache password protected directories without showing popup login

I read here how to get into an Apache password protected directroy via dircet link with the simple:

http://username:[email protected]/protected_dir/

that works in FF/Chrome/Safari, and obviously not in IE7! :)

Do you know how could i get into a psw protected directory creating maybe a login form and using GET/POST to get in?

Do I need to set a session before getting in or I can simply pass to the protected directory the user and password as GET/POST parameters? (In this last case what name for parameters do I have to use?)

Thanks!

+4  A: 

What you're referring to is HTTP authentication, and is not handled with URL parameters or POST data.

A HTTP client must handle it directly.

Now, if you have no control over the password protected directory, there's nothing you can do.
If, however, you do have control and want to provide an HTML login form, you must change the method of authentication and, instead of relying on HTTP authentication, do it via URL parameters or POST data. You can do that not using a different authentication type module for a Apache (necessarily a third-party one, because Apache only supports HTTP Basic and Digest authentication), or, more realistically, doing the authentication with PHP and managing a session.

Artefacto  2010-06-18 18:00:25
@Artefacto: thanks for the fast reply. Actually it is handled with URL paramaters cause the URL i posted in my question works on all browsers except IE.
Marco Demajo  2010-06-18 19:24:17
@Marco Demaio By url parameters I mean the query string.
Artefacto  2010-06-18 19:41:24
@Artefacto: oh ok, sorry, so basically you are saying there is no way. I know how to do it using PHP sessions, but you are saying there is no way to do query GET/POST authentication over HTTP authentication, aren't you? Just to know if I understood! Thanks!
Marco Demajo  2010-06-18 20:26:00
HTTP authentication works at a different level than GET/POST parameters, and is handled differently by the browser.
Ignacio Vazquez-Abrams  2010-06-18 20:33:23
@Ignacio: +1 and thanks for the comment/answer.
Marco Demajo  2010-06-18 21:02:26

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases