Documentation

Difference between revisions of "Basic authentication"

(Basic authentication in PHP with CGI workaround)
 
Line 2: Line 2:
 
There is however a workaround.
 
There is however a workaround.
 
First add a .htaccess file with following code in it:
 
First add a .htaccess file with following code in it:
'''
+
 
<IfModule mod_rewrite.c>  
+
<IfModule mod_rewrite.c>  
RewriteEngine on \n
+
RewriteEngine on \n
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]
+
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]
</IfModule>
+
</IfModule>
'''
+
 
  
 
Next add the following line to your script right before the authentication:
 
Next add the following line to your script right before the authentication:
'''
+
 
list($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']) = explode(':' , base64_decode(substr($_SERVER['HTTP_AUTHORIZATION'], 6)));
+
list($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']) = explode(':' , base64_decode(substr($_SERVER['HTTP_AUTHORIZATION'], 6)));
'''
 
  
 
Now your script should work with basic authentication.
 
Now your script should work with basic authentication.

Revision as of 19:27, 24 January 2017

Because in our webserversetup PHP is installed as a common gateway interface (CGI) basic authentication will not work in its usual way. There is however a workaround. First add a .htaccess file with following code in it:

<IfModule mod_rewrite.c> 
RewriteEngine on \n
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]
</IfModule>


Next add the following line to your script right before the authentication:

list($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']) = explode(':' , base64_decode(substr($_SERVER['HTTP_AUTHORIZATION'], 6)));

Now your script should work with basic authentication.