Re: [WebDNA] directory protection questions

This WebDNA talk-list message is from

2008


It keeps the original formatting.
numero = 100253
interpreted = N
texte = ------=_Part_10737_12113683.1215452017340 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Content-Disposition: inline Terry, My issue with realm based passwords is that if you have used a cookie based system for login to a secure area then the user is forced to re-enter a realm username/password for file download. I'm sure you could engineer it so that it is the same username/password for both - but the user is still inconvenienced. If the code I posted works (and I haven't tested it on a PC yet) then one cookie based login will suffice. Once you then determine which files the user is allowed to download you make sure that only those filenames are passed to the download script. - Tom ------=_Part_10737_12113683.1215452017340 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit Content-Disposition: inline Terry,

My issue with realm based passwords is that if you have used a cookie based system for login to a secure area then the user is forced to re-enter a realm username/password for file download.  I'm sure you could engineer it so that it is the same username/password for both - but the user is still inconvenienced.

If the code I posted works (and I haven't tested it on a PC yet) then one cookie based login will suffice.  Once you then determine which files the user is allowed to download you make sure that only those filenames are passed to the download script.

- Tom


------=_Part_10737_12113683.1215452017340-- Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] directory protection questions ("Tom Duke" 2008)
  2. Re: [WebDNA] directory protection questions (Terry Wilson 2008)
  3. Re: [WebDNA] directory protection questions (Terry Wilson 2008)
  4. Re: [WebDNA] directory protection questions ("Tom Duke" 2008)
  5. RE: [WebDNA] directory protection questions (Terry Wilson 2008)
  6. Re: [WebDNA] directory protection questions ("Tom Duke" 2008)
  7. RE: [WebDNA] directory protection questions (Terry Wilson 2008)
  8. Re: [WebDNA] directory protection questions (Terry Wilson 2008)
  9. Re: [WebDNA] directory protection questions ("Tom Duke" 2008)
  10. Re: [WebDNA] directory protection questions (Terry Wilson 2008)
  11. Re: [WebDNA] directory protection questions ("Tom Duke" 2008)
  12. Re: [WebDNA] directory protection questions (Bob Minor 2008)
  13. RE: [WebDNA] directory protection questions ("Will Starck" 2008)
  14. Re: [WebDNA] directory protection questions (Terry Wilson 2008)
  15. Re: [WebDNA] directory protection questions (Dale Therio 2008)
  16. RE: [WebDNA] directory protection questions (Terry Wilson 2008)
  17. Re: [WebDNA] directory protection questions (Terry Wilson 2008)
  18. Re: [WebDNA] directory protection questions (Terry Wilson 2008)
  19. RE: [WebDNA] directory protection questions ("Will Starck" 2008)
  20. Re: [WebDNA] directory protection questions (Colin Sidwell 2008)
  21. Re: [WebDNA] directory protection questions (Frank Nordberg 2008)
  22. Re: [WebDNA] directory protection questions (Stuart Tremain 2008)
  23. [WebDNA] directory protection questions (Terry Wilson 2008)
------=_Part_10737_12113683.1215452017340 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Content-Disposition: inline Terry, My issue with realm based passwords is that if you have used a cookie based system for login to a secure area then the user is forced to re-enter a realm username/password for file download. I'm sure you could engineer it so that it is the same username/password for both - but the user is still inconvenienced. If the code I posted works (and I haven't tested it on a PC yet) then one cookie based login will suffice. Once you then determine which files the user is allowed to download you make sure that only those filenames are passed to the download script. - Tom ------=_Part_10737_12113683.1215452017340 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit Content-Disposition: inline Terry,

My issue with realm based passwords is that if you have used a cookie based system for login to a secure area then the user is forced to re-enter a realm username/password for file download.  I'm sure you could engineer it so that it is the same username/password for both - but the user is still inconvenienced.

If the code I posted works (and I haven't tested it on a PC yet) then one cookie based login will suffice.  Once you then determine which files the user is allowed to download you make sure that only those filenames are passed to the download script.

- Tom


------=_Part_10737_12113683.1215452017340-- "Tom Duke"

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

simple answer? [hideif] (1997) color and size options (1997) SiteEditPro (1996) 2.1 release (1998) SendTo more emails (1998) Re:2nd WebCatalog2 Feature Request (1996) Size limit for tmpl editor ? (1997) More on the email templates (1997) Re1000001: Setting up shop (1997) [WebDNA] WebDNA licenses discount from 12/23 to 12/31 (2011) F*** you (1998) Assign Variable Value (1998) SetHeader not Working (2006) Websited Development (1999) Classifieds (2000) Summing fields (1997) [LOOKUP] (1997) Not really WebCat (1997) WebCat2 beta 11 - new prefs ... (1997) Cart Question: The Epic Saga (1998)