[2667] in WWW Security List Archive
Re: Combining authentications
daemon@ATHENA.MIT.EDU (Todd Merritt)
Sat Aug 17 16:51:19 1996
Date: Sat, 17 Aug 1996 11:44:30 -0700 (MST)
From: Todd Merritt <tmerritt@u.arizona.edu>
To: Romy Varga <vargar@cognos.com>
cc: www-security@ns2.rutgers.edu
In-Reply-To: <3214B9E2.4417@cognos.com>
Errors-To: owner-www-security@ns2.rutgers.edu
> Do you have any suggestion on how the username and password could be
> passed on from a script to the Enterprise server (I assume in the form
> of some variables) so that the client does not see them?
>
$ENV{'REMOTE_USER'} and $ENV{'REMOTE_PASSWD'} contain these values in a
CGI script. (If you're using htpasswd)
/*
"Don't sell your soul to gain the world, wisdom is better than silver and gold"
- Bob Marley
Todd also known as tmerritt@aruba.ccit.arizona.edu
http://www.ccit.arizona.edu/~todd
*/
