Re: The Form authentication trick
This WebDNA talk-list message is from 2000
It keeps the original formatting.
numero = 35435
interpreted = N
texte = I need to PGP sign some outgoing emails on my *nix box, has anyone done thisand if so how.Sincerely,Robert MinorDirector of Internet Services------------------------------------------------------------Cybermill Communicationshttp://www.cybermill.com http://www.merchantmaker.comProviding Ecommerce and interactive website development andhosting services on Macintosh, Windows NT, Unix, and AS/400.> From: John Butler
> Reply-To: (WebCatalog Talk)> Date: Mon, 31 Jul 2000 11:38:32> To: (WebCatalog Talk)> Subject: Re: The Form authentication trick> > Kalin,> > yes for the purposes of this 'trick', [authenticate] works as well.> > when you say it worked the first time and after that.... do you mean that> when using NN, you can't> *change* NN's cached username/password values from one set to another?> If so then yes, this does seem to be the biggest drawback (but no worse than> using the standard> ugly-dialog method). Brice said he is getting around that by having the> user 'logout' which> actually goes to another page protected to another group (or> authenticated to another group).> What does he mean? I am not sure. He said-> > The solution are:> - quit your browser session before switching personality [or]> - use logout button that send the user to a page protected> (on the same domain) to another group, which 'reset' his> username/password settings. Then Login again. > > I think he means have the user go to a page which will show the [protect] or> [authenticate] if> username/password are not *blank* (null values)... which resets the> username/password values in NN> cache back to as if fresh from launch (after the user enters *nothing* in the> ugly dialogue box and> proceeds). If not that, then I do not understand what he means, and would> love to hear a more> elaborate explanation. It would be nice if Brice would jump in to explain...> > > Or when you said it worked the first time and after that.... did you mean> that even if you *quit*> NN and relaunch then it will not let you in even once? If so, then that is> truely baffling. If so,> then what it is that you and Ken have in common that Brice and I don't?> > I use the following (which *always* works to login after quitting and> relaunching NN):> browser=G3 MacOS 9.04, NN 4.7> server = Linux/intel , Webcat 3.08> > -John> > Kalin Mintchev wrote:> >> hi Brice:>> >> 4) on protected.tpl (and others pages)>> use the usual [protect groupname] tag>> >> this says [protect groupname]. can this work with [authenticate] too?>> i saw and tryed the demo it works for me.>> the thing is i'm trying it (the idea you posted in The Form>> authentication trick) with the [authenticate] tag and i get the same>> results described by Kenneth Grome. it worked the first time and after>> that....>> it seems everything works fine untill the browser gets to that login2.tpl>> is there something else i'm missing?.>> this is what i do:>> page #1:>> form with input names password and username, action=logon1.html.>> page #2: logon1.html>> [showif NotFound=[lookup>> db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotF>> ound]]>> [redirect page1.html]>> [/showif]>> [showif [password]![lookup>> db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotF>> ound]]>> [redirect page1.html]>> [/showif]>> [search>> db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eq>> passdatarq=[password]]>> [showif [numFound]=0]>> [redirect page1.html]>> [/showif]>> [/search]>> [redirect>> http://[encrypt][username]:[password][/encrypt]@www.mysite.com/login2.html]>> >> page #3: logon2.html>> in the header:>> > HTTP-EQUIV=REFRESH CONTENT=0;URL=http://www.mysite/protected.html>>> the protected page has this in it:>> [showif NotFound=[lookup>> db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotF>> ound]]>> [authenticate Unauthorized User]>> [/showif]>> [showif [password]![lookup>> db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotF>> ound]]>> [authenticate Unauthorized User]>> [/showif]>> [search>> db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eq>> passdatarq=[password]]>> [showif [numFound]=0]>> [authenticate Unauthorized User]>> [/showif]>> [/search]>> >> so when i put real username and passwrd in page1.html i reach login2.html>> and then the ugly dialog box shows up.>> it never shows me the protected.html.>> if i enter the password and username again there everything is ok>> >> any comment will be helpful.>> thanks.> > > -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to> > Web Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Associated Messages, from the most recent to the oldest:
I need to PGP sign some outgoing emails on my *nix box, has anyone done thisand if so how.Sincerely,Robert MinorDirector of Internet Services------------------------------------------------------------Cybermill Communicationshttp://www.cybermill.com http://www.merchantmaker.comProviding Ecommerce and interactive website development andhosting services on Macintosh, Windows NT, Unix, and AS/400.> From: John Butler > Reply-To: (WebCatalog Talk)> Date: Mon, 31 Jul 2000 11:38:32> To: (WebCatalog Talk)> Subject: Re: The Form authentication trick> > Kalin,> > yes for the purposes of this 'trick', [authenticate] works as well.> > when you say it worked the first time and after that.... do you mean that> when using NN, you can't> *change* NN's cached username/password values from one set to another?> If so then yes, this does seem to be the biggest drawback (but no worse than> using the standard> ugly-dialog method). Brice said he is getting around that by having the> user 'logout' which> actually goes to another page protected to another group (or> authenticated to another group).> What does he mean? I am not sure. He said-> > The solution are:> - quit your browser session before switching personality [or]> - use logout button that send the user to a page protected> (on the same domain) to another group, which 'reset' his> username/password settings. Then Login again. > > I think he means have the user go to a page which will show the [protect] or> [authenticate] if> username/password are not *blank* (null values)... which resets the> username/password values in NN> cache back to as if fresh from launch (after the user enters *nothing* in the> ugly dialogue box and> proceeds). If not that, then I do not understand what he means, and would> love to hear a more> elaborate explanation. It would be nice if Brice would jump in to explain...> > > Or when you said it worked the first time and after that.... did you mean> that even if you *quit*> NN and relaunch then it will not let you in even once? If so, then that is> truely baffling. If so,> then what it is that you and Ken have in common that Brice and I don't?> > I use the following (which *always* works to login after quitting and> relaunching NN):> browser=G3 MacOS 9.04, NN 4.7> server = Linux/intel , Webcat 3.08> > -John> > Kalin Mintchev wrote:> >> hi Brice:>> >> 4) on protected.tpl (and others pages)>> use the usual [protect groupname] tag>> >> this says [protect groupname]. can this work with [authenticate] too?>> i saw and tryed the demo it works for me.>> the thing is i'm trying it (the idea you posted in The Form>> authentication trick) with the [authenticate] tag and i get the same>> results described by Kenneth Grome. it worked the first time and after>> that....>> it seems everything works fine untill the browser gets to that login2.tpl>> is there something else i'm missing?.>> this is what i do:>> page #1:>> form with input names password and username, action=logon1.html.>> page #2: logon1.html>> [showif NotFound=[lookup>> db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotF>> ound]]>> [redirect page1.html]>> [/showif]>> [showif [password]![lookup>> db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotF>> ound]]>> [redirect page1.html]>> [/showif]>> [search>> db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eq>> passdatarq=[password]]>> [showif [numFound]=0]>> [redirect page1.html]>> [/showif]>> [/search]>> [redirect>> http://[encrypt][username]:[password][/encrypt]@www.mysite.com/login2.html]>> >> page #3: logon2.html>> in the header:>> > HTTP-EQUIV=REFRESH CONTENT=0;URL=http://www.mysite/protected.html>>> the protected page has this in it:>> [showif NotFound=[lookup>> db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotF>> ound]]>> [authenticate Unauthorized User]>> [/showif]>> [showif [password]![lookup>> db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotF>> ound]]>> [authenticate Unauthorized User]>> [/showif]>> [search>> db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eq>> passdatarq=[password]]>> [showif [numFound]=0]>> [authenticate Unauthorized User]>> [/showif]>> [/search]>> >> so when i put real username and passwrd in page1.html i reach login2.html>> and then the ugly dialog box shows up.>> it never shows me the protected.html.>> if i enter the password and username again there everything is ok>> >> any comment will be helpful.>> thanks.> > > -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to> > Web Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Bob Minor
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
Cancel Subscription (1996)
WebCatalog/Mac 2.1b2 - PIXO (1997)
Re:2nd WebCatalog2 Feature Request (1996)
WebCat name recognition (was MacFinder -- a new WebDNAweb site) (1998)
Sendmail (1997)
log out (2001)
Extended [ConvertChars] (1997)
[BULK] [WebDNA] WebDNA Start-up Error (2012)
Bugs still *not* fixed as promised ... (2000)
emailer settings and control questions (1997)
WebCat2b12 Mac.acgi--[searchstring] bug (1997)
Press Release hit the NewsWire!!! (1997)
New public beta available (1997)
P1: How to make webcatalog more stable. - LONG (1999)
Great product and great job ! (1997)
WC2.0 Memory Requirements (1997)
Attn iTools / WebCat users.... (2004)
WebCat2 beta FTP site (1997)
[Announce] Newest Commerce Site based on WebCatalog (1997)
My own list archives (2001)