 |  |  |  |  |  |  |  |
unset $_SERVER['PHP_AUTH_USER']
Please support our PHP advertiser: PostgreSQL or MySQL? Compare and contrast the two most popular open source databases
 |
Hi guys,
is there anyway to unset $_SERVER['PHP_AUTH_USER'] than to close the browser?
I have tried
or even
it unset but after you have refreshed it the $_SERVER['PHP_AUTH_USER'] comes back again.
Hope to hear from you guys.Thanks
is there anyway to unset $_SERVER['PHP_AUTH_USER'] than to close the browser?
I have tried
php Syntax (Toggle Plain Text)
or even
php Syntax (Toggle Plain Text)
it unset but after you have refreshed it the $_SERVER['PHP_AUTH_USER'] comes back again.
Hope to hear from you guys.Thanks
•
•
Join Date: Nov 2007
Posts: 84
Reputation: 
Solved Threads: 14
Junior Poster in Training
As far as I understand, it's cached by the browsers in order to eliminate the need to constantly log in everytime you access/refresh a page. see Apache article regarding basic authentication (scroll down about half way through page).
Yeah,that it is meant to be but is there something to unset it for example I want to logout of the site so I would need that $_SERVER['PHP_AUTH_USER'] variable anymore?I mean can it work like sessions or cookies?
•
•
Join Date: Nov 2007
Posts: 84
Reputation:
Solved Threads: 14
Junior Poster in Training
•
•
•
•
Originally Posted by ryan_vietnow 
Yeah,that it is meant to be but is there something to unset it for example I want to logout of the site so I would need that $_SERVER['PHP_AUTH_USER'] variable anymore?I mean can it work like sessions or cookies?
not as far as I can tell...there is a section in the php manual that explains forcing a new login prompt to be displayed in some browsers (see example # 3 here). -- but seems to be no way to unset the variable itself
is there a reason to not just use a session/cookie, login form, and a user/password database?
First of all the site I am editing has no database management and authentication username and password comes from third party sites not from the site.Second,I think sessions/cookie cannot handle great security on the site.If I push to handle this issues by applying database management,I will have to edit the whole site itself...
What do you think?
What do you think?
•
•
Join Date: Nov 2007
Posts: 84
Reputation:
Solved Threads: 14
Junior Poster in Training
not having database connectivity would definitely thwart setting up your own log in/out system...
as far as security goes, basic authentication is about the worst, as it sends unencrypted 'plain text' which anyone who might be sniffing on the network can surely grab. Does the third party connection come over a secure connection (https://) ?
sessions are definitely your best bet, I usually use them in conjunction with a username/encrypted password from a mysql database...
as far as security goes, basic authentication is about the worst, as it sends unencrypted 'plain text' which anyone who might be sniffing on the network can surely grab. Does the third party connection come over a secure connection (https://) ?
sessions are definitely your best bet, I usually use them in conjunction with a username/encrypted password from a mysql database...
|
Other Threads in the PHP Forum
- Previous Thread: login form and MySQL connection/validation error
- Next Thread: Website Problem
| Thread Tools | Search this Thread |
You need to join our community in order to build your list of favorite forums. You can visit the forum index for a listing of all forums.
Latest PHP Posts
- Today's Posts
- Unanswered Threads
Related Forum Features
ajax apache api array beginner binary body broken cakephp checkbox class cms code cron curl database date date/time display dynamic echo email error file files folder form forms function functions gc_maxlifetime global google host href htaccess html image include insert integration ip java javascript joomla limit link list login loop mail memmory menu mlm msqli_multi_query multiple mycodeisbad mysql navigation oop parameter parsing paypal pdf php problem query radio random recourse recursion regex registrationform remote script search seo server sessions sms soap source space sql static syntax system table tutorial update upload url validator variable video web webdesign wordpress xml youtube
