Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Westi on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

php_auth_pw cgi problems 2

Status
Not open for further replies.
cLFlaVA

cLFlaVA

Programmer
Jun 14, 2004
6,450
US
hi all. i have a site with an admin section i created. the admin section used php_auth_pw and php_auth_user to allow myself entry after entering my name and password.

i have recently upgraded my hosting plan, however. suddenly, i couldn't get on my admin section. so i emailed support, and they said they're running apache as a cgi, in "high security" mode. this, they said, is why i can no longer user php_auth_*.

what is the best method you think i should use to implement the same level of security i had, with this new environment?

thanks for your time and help,

cory

*cLFlaVA
----------------------------
[tt]I already made like infinity of those at scout camp...[/tt]
[URL unfurl="true"]http://www.coryarthus.com/[/url]
[banghead]
 
Sort by date Sort by votes
I suppose they meant that they run Apache and the PHP install in CGI mode, not as an Apache module.
Have you checked what the $_SERVER variables look like after the upgrade while in a restricted area?
I assume that the .htaccess restrictions still work?
 
Upvote 0 Downvote
Actually - the 'high security' mode is bogus. The fact is just that the PHP_AUTH_USER is not availabe via CGI.
PHP manual said:
The HTTP Authentication hooks in PHP are only available when it is running as an Apache module and is hence not available in the CGI version.
Click to expand...
 
Upvote 0 Downvote
To the best of my knowledge, there isn't one. The PHP online manual is pretty clear that $_SERVER['PHP_AUTH_USER'] and $_SERVER['PHP_AUTH_PW'] are available only when PHP is run under Apache (and under IIS with PHP5 running as an ISAPI filter) as a module (
The PHP online manual section titled, "HTTP Authentication with PHP" ( states that PHP has to latch onto hooks in the web server to get those variables at all.

You might try instead implementing your own HTML form-based authentication.

Want the best answers? Ask the best questions!

TANSTAAFL!!
 
Upvote 0 Downvote
sorry DRJ478, that's what I meant. PHP running as a CGI. I get confused with all these acronyms.

sleipnir, yeah that's what I figured - i'll set up a user authentication form.

thanks to both of you for your help.

- cory

*cLFlaVA
----------------------------
[tt]I already made like infinity of those at scout camp...[/tt]
[URL unfurl="true"]http://www.coryarthus.com/[/url]
[banghead]
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

zura
  • Locked
  • Question
PHP MYSQL problems
Replies
2
Views
96
zura
zura
FNBIT
  • Locked
  • Question
regex question - problems with capitilization 1
Replies
4
Views
113
jpadie
jpadie
BobRodes
  • Locked
  • Question
Problems with PHP mail function using localhost
Replies
10
Views
202
jpadie
jpadie
misslois74
  • Locked
  • Question
problems in sending emails
Replies
1
Views
80
jpadie
jpadie
misslois74
  • Locked
  • Question
problems in storing values to the database
Replies
3
Views
87
vacunita
vacunita

Part and Inventory Search

Sponsor

Back
Top