Ang: persistent basic authorization?

Markus Harnvi (Markus.Harnvi@byggdok.se)
Wed, 22 Oct 1997 10:57:10 +0100 (MET)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: JohnBeaman: "Re: Dave's last Post"
Previous message: lydia: "persistent basic authorization?"

I would like to have a similar solution.

So far my idea is to have a "authenticating proxy". 

Every URL pointing at the protected pages have to be rewritten, before
returning the page to the client so that they will point to the proxy
instead of directly to the server. Then a URL to a protected page:

http://www.remoteserver.com/my/protected/url/

becomes

http://www.myserver.com/cgi-bin/authproxy.pl?page=http://http%3A%2F%2Fwww%2Eremoteserver%2Ecom%2Fmy%2Fprotected%2Furl%2F

This way the proxy will handle request the protected page and handle
the authentication. The client will never see the password. 

I think this would work. Now someone just have to write it... 

	//Markus (so many ideas -so little time)

Next message: JohnBeaman: "Re: Dave's last Post"
Previous message: lydia: "persistent basic authorization?"