Page 3 - User Authentication With Apache And PHP

Dev Shed Forums

Administration
AJAX
Apache
BrainDump
DHTML
Flash
Java
JavaScript
Multimedia
MySQL
Oracle
Perl
PHP
Practices
Python
Reviews
Security
Smartphone Development
Style-Sheets
Web Services
XML
Zend
Zope

Mobile Linux
App Generation ROI
IBM® developerWorks

Forums Sitemap

E-Commerce Hosting
Linux Web Hosting
Managed Hosting
Small Business Hosting
VPS Hosting

Weekly Newsletter
Developer Updates
Free Website Content

Articles

Forums

All Feeds

Write For Us Get Paid

Request Media Kit

Site Map

Privacy Policy
Support

USERNAME

PASSWORD

>>> SIGN UP!

Lost Password?

PHP

RSS

User Authentication With Apache And PHP

By: The Disenchanted Developer, (c) Melonfire	Search For More Articles! Disclaimer Author Terms
Rating: / 56
2002-03-13

Table of Contents:

User Authentication With Apache And PHP

	ADD THIS ARTICLE TO:
	Del.ici.ous	Digg
	Blink	Simpy
	Google	Spurl
	Y! MyWeb	Furl

Email Me Similar Content When Posted

Add Developer Shed Article Feed To Your Site

Email Article To Friend

Print Version Of Article

PDF Version Of Article

User Authentication With Apache And PHP - The Right Creds
( Page 3 of 11 )

So that takes care of the login. Now, what about session verification and logout?

Every time you attempt to access a page under the protected directory, the server will automatically ask for your credentials again. You probably won't see the dialog box again, though, because the password entered the first time is cached for the duration of your visit, and the browser will automatically take care of resending user credentials every time you access a page within the protected area.

In order to log out, you'll have to close the browser. There currently exists no way to "flush" the password cache in the major browsers (although Lynx allows you to do this via the underscore (_) key command).

You can also protect specific files within a directory, rather than the entire directory, if you like. Simply wrap the authentication commands in the ".htaccess" file in a <Files>...</Files> block, as in the example below:

<Files add.cgi edit.cgi delete.cgi index.cgi>
AuthType Basic
AuthUserFile /usr/local/apache/users
AuthName "Administration Module"
Require valid-user
</Files>

This protects only the four files "index.cgi", "add.cgi", "edit.cgi" and "delete.cgi" in the "admin" directory, leaving all other files unprotected.

Next: Hidden Costs >>

	Discuss User Authentication With Apache And PHP

	>>> Be the FIRST to comment on this article!



	>>> More PHP Articles >>> More By The Disenchanted Developer, (c) Melonfire

PHP ARTICLES

- Using Directory Iterators to Build Loader Ap...
- Using the spl_autoload() Functions to Build ...
- Working Out of the Object Context to Build L...
- Using the _autoload() Magic Function to Buil...
- The Destruct Magic Function in PHP 5
- The Autoload Magic Function in PHP 5
- Developing a Recursive Loading Class for Loa...
- The Sleep and Wakeup Magic Functions in PHP 5
- Using the Clone Magic Function in PHP 5
- Including Files Recursively with Loader Appl...
- The Call Magic Function in PHP 5
- Designing a Captcha System with PHP and MySQL
- Using Static Methods to Build Loader Apps in...
- The Isset and Unset Magic Functions in PHP 5
- Advanced PHP Form Input Validation to Check ...
Find More PHP Articles