httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From André Warnier ...@ice-sa.com>
Subject Re: [users@httpd] authentication question
Date Tue, 12 May 2009 17:40:51 GMT
Ross Boylan wrote:
...
I've seen mention of apache using a login page, rather than the usual
popup.  Is there a way to do that?  It might have a nicer feel for
users.

The usual popup is built into each browser.  It appears only when the 
HTTP server is requesting a Basic or Digest type of authentication. 
Both of these are built into every browser, along with the popup window.

For any other login-based authentication scheme, the server side is on 
its own, and can decide to send any html page or whatever to ask the 
user for his id and password or whatever.
Basically in that case, the browser doesn't even "know" that it is 
"doing authentication".  For the browser, this is just a html form to be 
filled-in and submitted.

Depending on the authentication scheme, it may even be that the login 
form comes from a different server than the server the user tried to 
access in the first place, and is submitted to yet another different 
server. And that this third server then redirects the browser to the 
original server, but with a modified URL.

There are lots of schemes.


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message