Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

401 Authorize script doesn't work the way i'd like it

Status
Not open for further replies.
frummel

frummel

Technical User
Jun 21, 2002
91
NL
I found this script:
----------------
<?php

header(' Basic realm=&quot;My Private Stuff&quot;');
header('Status: 401 Unauthorized');

// File Name: auth02.php

// Check to see if $PHP_AUTH_USER already contains info

if (!isset($PHP_AUTH_USER)) {

// If empty, send header causing dialog box to appear

echo 'Authorization Required.';
exit;

} else if (isset($PHP_AUTH_USER)) {

if (($PHP_AUTH_USER != &quot;admin&quot;) || ($PHP_AUTH_PW != &quot;letmein&quot;)) {

echo 'Authorization Required.';
exit;

} else {
echo &quot;
<P>You're authorized!</p>
&quot;;
}
}



?>

------------

The problem with this script is that the loginbox comes up, but I have to fill in the login-info 3 times because the popup returns twice after the first login.

I'd like the popup just once, and then the page i try to secure...

Anyone any ideas?
 
Sort by date Sort by votes
I don't think you understand the logic of what it is you are trying to do. Maybe this rewrite will make it clearer:

<?php

function good_credentials ()
{
global $PHP_AUTH_USER, $PHP_AUTH_PW;

$retval = FALSE;

if (isset($PHP_AUTH_USER))
{
if (($PHP_AUTH_USER == &quot;admin&quot;) && ($PHP_AUTH_PW == &quot;letmein&quot;))
{
$retval = TRUE;
}
}

return $retval;
}


function auth_header ()
{
header(' Basic realm=&quot;My Private Stuff&quot;');
header('Status: 401 Unauthorized');
}



if (!good_credentials())
{
auth_header();
}
else
{
print &quot;Welcome!&quot;;
}
?> ______________________________________________________________________
Perfection in engineering does not happen when there is nothing more to add.
Rather it happens when there is nothing more to take away.
 
Upvote 0 Downvote
Hi there, thanks for your answer.. but now I have a different problem... a problem I had before..
When I try to open the page, i get the following message:

--------
Warning: Cannot add header information - headers already sent by (output started at /opt/guide/ in /opt/guide/ on line 24

Warning: Cannot add header information - headers already sent by (output started at /opt/guide/ in /opt/guide/ on line 25
--------

This means (from what i learned..) that the server has already sent a header, and the header generated by the page, comes too late. Therefor the header('Status: 401 unauthorized') must be at the top of the page...
 
Upvote 0 Downvote
This from
Remember that header() must be called before any actual output is sent, either by normal HTML tags, blank lines in a file, or from PHP. It is a very common error to read code with include(), or require(), functions, or another file access function, and have spaces or empty lines that are output before header() is called. The same problem exists when using a single PHP/HTML file. ______________________________________________________________________
Perfection in engineering does not happen when there is nothing more to add.
Rather it happens when there is nothing more to take away.
 
Upvote 0 Downvote
Hmmm... I have no idea what to do now....
What do you suggest?
 
Upvote 0 Downvote
My code does not output a header in line 2. It only outputs a header in line 24.

What modifications have you made? ______________________________________________________________________
Perfection in engineering does not happen when there is nothing more to add.
Rather it happens when there is nothing more to take away.
 
Upvote 0 Downvote
I uploaded my old file........
There was the header still in line 2...
The script you rewrote was ok. It's working just fine!
Thanks for noticing!
There's just one thing I don't understand:

In the loginbox i get, there's this realm:
My Private Stuff-2312

Wow did the -2312 get there???

Oh and thanks for the time you took for helping me out!

 
Upvote 0 Downvote
I have no idea where the &quot;-2312&quot; comes from.

On my server (Apache) running PHP 4.2.1, I get only the &quot;My Private Stuff&quot; part. That's with Opera, Mozilla, and IE. ______________________________________________________________________
Perfection in engineering does not happen when there is nothing more to add.
Rather it happens when there is nothing more to take away.
 
Upvote 0 Downvote
If you are running my code, there is nothing there that could be doing it. I used the realm as a string literal.
______________________________________________________________________
Did you know?
The quality of our answers is directly proportional to the number of stars you vote?
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

ersatz
  • Locked
  • Question
How to send 2 select from mysql database in email like tables
Replies
5
Views
463
ersatz
ersatz
sugram
  • Locked
  • Question
how start a second shell script
Replies
0
Views
112
sugram
sugram
PeDa
  • Locked
  • Question
POST Content-lLength of ... bytes exceeds the limit of 8388608 bytes in Unknown on line 0
Replies
4
Views
449
feherke
feherke
PeDa
  • Locked
  • Question
unwanted spaces inserted into the middle of php-generated html email body 1
Replies
2
Views
163
PeDa
PeDa
c0deM0nK424
  • Locked
  • Question
Gutenberg Block Editor - page edits and updates not working since wp site migration
Replies
1
Views
639
spamjim
spamjim

Part and Inventory Search

Sponsor

Back
Top