Re: [phplib] Extending authentication? From: Michael Chaney (mdchaney <email protected>)
Date: 08/13/00

> I've been using PHPLIB for a couple of months now and love it. I have a
> question about the best way to extend a user's authentication lifetime for
> a single page.
>
> I have an application which allows people with "author" privileges to
> write articles for the site. The editing form appears, they type in,
> pull down, push buttons...presto, an article goes in the database. The
> trouble is that sometimes it takes a long time to compose the actual
> article text, and their authentication expires. On submitting the
> article, they go back to the login page, and the article is now lost
> because relogging in calls the page again with new post variables.

Your question was already answered by Bryan McGuire, so I won't answer it
again.

I would point out that it might make sense to have the ability for the login
form to note when there are HTTP_POST_VARS or HTTP_GET_VARS (besides
"username", "password", and "submit") and make them available as hidden
fields on the login form, so that they will be posted again after login.

You could even have a hidden field on your original form that signaled
loginform.ihtml that it needs to preserve the posted vars.

That's pretty easy, and would solve the original problem in a slightly
different way. Hmm, I'm thinking about ways to implement that, you might
see some code here in a couple of days.

Michael 

--
Michael Darrin Chaney
mdchaney <email protected>
http://www.michaelchaney.com

---------------------------------------------------------------------
To unsubscribe, e-mail: phplib-unsubscribe <email protected>
For additional commands, e-mail: phplib-help <email protected>