RE: protect tag on NT

This WebDNA talk-list message is from

1997


It keeps the original formatting.
numero = 13006
interpreted = N
texte = Actually - becuase of the security scheme in IIS we came up with an additional scheme that puts the technique used for Authentication under your (the webmaster's) control. There is a file in the WebCatalog folder named authenticate checker, if WebCat finds this it uses Forms based passwords and not the username and password from the broswer (this is the only technique that works for IIS) - to have this be seamless with your site you need to pass username and password thru the site like you do with cart... If you want to use the browser challenge dialog and you are not using IIS as your server you can simply remove the file and you should have the old style...Sorry for the confusion.>Olin - > >>How is the protect tag on the NT version different from the Mac? I am >>running IIS4.0 and want to protect a group of pages so I add [protect >>mygroup]. The first page I hit gives me the username and password as an >>HTML page with a submit button. It works, but when I hit the next page >>of the group, once again it prompts me for a username and password. I >>thought the username and password would be held throughout but it is not. > >It should be just the same as the Mac version - it's the browser's job to >hang on to the username & password for that realm and pass it to the >server. I'll have to go run up and try it out on NT when I get a chance, >but if you'd like to send me a URL to try out or some WebDNA snippets I'll >see if I can spot anything. > >>I also tried the [authenticate mygroup] tag. This one I can't figure >>out. I type in the group and it brings up the same page (not a dialog >>username/password box) except that mygroup is the title. However, if I >>key in a correct username/password, it just keeps sending me back to the >>page. > >You always want to enclose the [authenticate] tag inside a [showif] or >[hideif] context (usually to check the current username and password and >require authentication if they are not present). Otherwise (as you've >seen), loading that page will just keep bringing up the Authentication >dialog in the browser. > >>How can I protect a select number of pages without having the user >>authenticate for every page besides doing my own user/pass db which is >>passed on every page as text and gets embedded in registries and logs? > >Either [protect] or [authenticate] would work, though [protect] would be a >much easier approach. Send me a few details on your setup and I'll see if >I can find out what's going wrong. > >thanks, > >Marc Eagle >StarNine Technologies >http://www.smithmicro.com/ Jay Van Vark ****************************** Pacific Coast Software | Commerce (WebCatalog) 11770 Bernardo Plaza Court | Hosting & Design Suite 453 | http://www.smithmicro.com San Diego, CA 92128 ****************************** 619.675.1106 Associated Messages, from the most recent to the oldest:

    
  1. Re: protect tag on NT IIS (Olin 1997)
  2. Re: protect tag on NT IIS (Grant Hulbert 1997)
  3. Re: protect tag on NT IIS (Kenneth Grome 1997)
  4. Re: protect tag on NT IIS (Olin 1997)
  5. Re: protect tag on NT IIS (Kenneth Grome 1997)
  6. Re: protect tag on NT IIS (Olin 1997)
  7. Re: protect tag on NT IIS (Kenneth Grome 1997)
  8. RE: protect tag on NT (Kenneth Grome 1997)
  9. RE: protect tag on NT (Marc Eagle 1997)
  10. RE: protect tag on NT (Olin 1997)
  11. RE: protect tag on NT (Kenneth Grome 1997)
  12. RE: protect tag on NT (Jay Van Vark 1997)
  13. RE: protect tag on NT (Marc Eagle 1997)
Actually - becuase of the security scheme in IIS we came up with an additional scheme that puts the technique used for Authentication under your (the webmaster's) control. There is a file in the WebCatalog folder named authenticate checker, if WebCat finds this it uses Forms based passwords and not the username and password from the broswer (this is the only technique that works for IIS) - to have this be seamless with your site you need to pass username and password thru the site like you do with cart... If you want to use the browser challenge dialog and you are not using IIS as your server you can simply remove the file and you should have the old style...Sorry for the confusion.>Olin - > >>How is the protect tag on the NT version different from the Mac? I am >>running IIS4.0 and want to protect a group of pages so I add [protect >>mygroup]. The first page I hit gives me the username and password as an >>HTML page with a submit button. It works, but when I hit the next page >>of the group, once again it prompts me for a username and password. I >>thought the username and password would be held throughout but it is not. > >It should be just the same as the Mac version - it's the browser's job to >hang on to the username & password for that realm and pass it to the >server. I'll have to go run up and try it out on NT when I get a chance, >but if you'd like to send me a URL to try out or some WebDNA snippets I'll >see if I can spot anything. > >>I also tried the [authenticate mygroup] tag. This one I can't figure >>out. I type in the group and it brings up the same page (not a dialog >>username/password box) except that mygroup is the title. However, if I >>key in a correct username/password, it just keeps sending me back to the >>page. > >You always want to enclose the [authenticate] tag inside a [showif] or >[hideif] context (usually to check the current username and password and >require authentication if they are not present). Otherwise (as you've >seen), loading that page will just keep bringing up the Authentication >dialog in the browser. > >>How can I protect a select number of pages without having the user >>authenticate for every page besides doing my own user/pass db which is >>passed on every page as text and gets embedded in registries and logs? > >Either [protect] or [authenticate] would work, though [protect] would be a >much easier approach. Send me a few details on your setup and I'll see if >I can find out what's going wrong. > >thanks, > >Marc Eagle >StarNine Technologies >http://www.smithmicro.com/ Jay Van Vark ****************************** Pacific Coast Software | Commerce (WebCatalog) 11770 Bernardo Plaza Court | Hosting & Design Suite 453 | http://www.smithmicro.com San Diego, CA 92128 ****************************** 619.675.1106 Jay Van Vark

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

shownext not showing next...still r2 (1997) WebCat for Unix?? (1997) taxRate is fine but taxTotal isn't (1997) WCS Newbie question (1997) [cart] not being interpreted inside [founditems] (1997) [WebDNA] exclamation point vs. [url] and [input] (2014) Strange Search Results (2004) Cookies (2001) Exclude by date - multiple (1997) can WC render sites out? (1997) Help name our technology! I found it (1997) [WebDNA] how to purge webdna cache of templates? (2009) WebCommerce Security Alert! (1996) Text data with spaces in them... (1997) [OT] Might be of interest... (2006) ERASING DATABASE (1997) Flash 4 Examples (2000) upgrading (1997) passing search criteria (1997) Random (2000)