PHPBuilder.com, the best resource for PHP tutorials, templates, PHP manuals, content management systems, scripts, classes and more.

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Hiermenus
DatabaseJournal
Technology Jobs

IT
Developer
Internet News
Small Business
Personal Technology
International

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers

Covalent Extends Apache 2.0 to Microsoft ASP.NET
ShopWorX - Support for Windows
PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1
Network Risk Assessment
Full-Featured, Java-Based Apache GUI

Partners & Affiliates

PHP, MySQL and images
A Practical Approach to Object-Relational Mapping in PHP
The Benefits of Using Objects with Databases
In Case You Missed It...The Week of March 12, 2006
Using PHP to Make Basic vCalendar/iCalendar Events

Re: [phplib] Authenication From: Matt Gregory (msgregory <email protected>)
Date: 08/01/01

Next message: Dima Nemchenko: "Re: [phplib] Authenication"
Previous message: Dima Nemchenko: "Re: [phplib] Authenication"
In reply to: Dima Nemchenko: "Re: [phplib] Authenication"
Next in thread: Dima Nemchenko: "Re: [phplib] Authenication"
Reply: Dima Nemchenko: "Re: [phplib] Authenication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Dima Nemchenko wrote:

> Matt Gregory wrote:
>
> > What is it that determines whether an authenication has expired?
> > I have set lifetime to 300, but it has no effect. I still have
> > to login, unless I use a session->url() URL.
> >
> > How do I pass authentication information from page to page? How
> > should I code my pages so that it doesn't need GET variables?
> > I can use hidden_session on data entry forms, right? Or do I
> > not need that? I've stuck all my links in url() calls, but on
> > forms I need POST and GET variables, and I don't think that's
> > going to work. Plus, I would like for the pages to be
> > bookmarkable.
> >
> > Thanks for any help
> > Matt
> >
> > --
> > Abbestellen mit Mail an: phplib-unsubscribe <email protected>
> > Kommandoliste mit Mail an: phplib-help <email protected>
>
> Hi Matt,
>
>
> This is what I think I know--anyone who knows better, please correct me
> if I'm wrong.
>
> You need Sess for Auth to work. That's how PHPLib keeps track of who you
> are. sess will use cookies if possible, but reverts to GET/POST if not.
> As such, it's best to use sess->url() and, POST variables on your forms,
> throughout, unless you are willing to drop all those who don't have
> cookies enabled.
>
>
> Hope this helps (and even makes sense!),

Hi Dima,

Thanks for the reply! I think I've figured it out after a good night's
rest (information overload can be tiring :-)). I was trying to use an
ip address in the URL's instead of a domain name, and cookies don't like
that, apparently. The HOSTS file doesn't seem to be an adequate
workaround, either, so I guess this whole authentication thing isn't
going to work because I have no domain name for the host I want to put
it on. I'm trying to deploy this on an intranet and give outside access
to a few people. The outside people could use the mail server name,
but internally it's a different server. I wonder if it's possible to
have it bypass the authentication if the request is coming from an
internal ip address.

Matt

-- 
Abbestellen mit Mail an:   phplib-unsubscribe <email protected>
Kommandoliste mit Mail an: phplib-help <email protected>

Next message: Dima Nemchenko: "Re: [phplib] Authenication"
Previous message: Dima Nemchenko: "Re: [phplib] Authenication"
In reply to: Dima Nemchenko: "Re: [phplib] Authenication"
Next in thread: Dima Nemchenko: "Re: [phplib] Authenication"
Reply: Dima Nemchenko: "Re: [phplib] Authenication"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]