user authentication questions

**XtrEM3** · Apr 25, 2006 07:57

i haven't had much experience with user authentication, so i have a few questions.

i wrote a script, which if a user is not logged in, it will show the login page and once they put in their information it will refresh the page, and login...validating information through the database.

1) i want the ability for users to login through the URL tho, as well...

http://username:password@www.mysite.com/memberpage

i'm not sure exactly what this is called, but i kno i don't kno how to use it. how do i check if a user is trying to login using this method? can i check the headers?

2) in addition, when a user logs in through the normal form, i want it to also login using the browser authentication...so when they show up in my access logs, i can indentify them (easier).

i'm not sure how to look into any of these methods, so if sum1 could even point me in the right direction, that'd help alot.

thanks

**erikwebb** · Apr 25, 2006 12:10

The only time I've seen that URL login style used before is on FTP sites. If there is login available purely through the URL, it is most likely a function of your web server (Apache examples here). Using this method will also take care of the "browser authentication" function you were asking for.

HTH.

**XtrEM3** · Apr 25, 2006 13:24

cpanel allows logging in this way and so do many porn sites. also cpanel gets the username from the user/pw entered in the browser and uses it in the next page.

i looked at that page you provided, but i'm not sure how it'll help me here, sorry.

**mithra62** · Apr 25, 2006 16:36

Have you tried using the query string?

http://www.mysite.com/memberpage?use...&pass=password

or even setting it up like a directory situation:

http://www.mysite.com/memberpage/username/password

The first is easy the second will require some programming

**XtrEM3** · Apr 25, 2006 16:49

Originally Posted by mithra62

Have you tried using the query string?

http://www.mysite.com/memberpage?use...&pass=password

or even setting it up like a directory situation:

http://www.mysite.com/memberpage/username/password

The first is easy the second will require some programming

well actually its not that i want it to show up in the URL...i just want them to be able to login using the browser's user/pw features thus appearing in my server logs. this method is the same as i already do just less secure.

edit: just to clarify, this is what i want to be possible, yet i want to interact with the username they actually type in....using it to login to the site

**XtrEM3** · Apr 25, 2006 17:52

alrite,

well thanks everyone...i just thought there would be a simple way to make my site more accessible...like grabbing information from headers...but it seems its going to be a bit more complicated than that, so i'll just go without this features.

thanks again,
blayne

User Tag List

Thread: user authentication questions

Thread Tools

Display

user authentication questions

Bookmarks

Bookmarks

Posting Permissions