Re: The Form authentication trick
This WebDNA talk-list message is from 2000
It keeps the original formatting.
numero = 35436
interpreted = N
texte = Do you mean you need WebCat to sign some outgoing e-mails? You need PGPobviously and a shell script to do the signing. Note that you may needto hard-code your PGP password into the script; it has been some yearssince I toyed with PGP. I am not sure if you need the authenticationpassword to sign a file, or only to encrypt it.In any case, this is mostly not a WebCat issue; I would look to any PGPFAQ's on the net.John PeacockBob Minor wrote:> > I need to PGP sign some outgoing emails on my *nix box, has anyone done this> and if so how.> > Sincerely,> > Robert Minor> Director of Internet Services> ------------------------------------------------------------> Cybermill Communications> http://www.cybermill.com http://www.merchantmaker.com> > Providing Ecommerce and interactive website development and> hosting services on Macintosh, Windows NT, Unix, and AS/400.> > > From: John Butler
> > Reply-To: (WebCatalog Talk)> > Date: Mon, 31 Jul 2000 11:38:32> > To: (WebCatalog Talk)> > Subject: Re: The Form authentication trick> >> > Kalin,> >> > yes for the purposes of this 'trick', [authenticate] works as well.> >> > when you say it worked the first time and after that.... do you mean that> > when using NN, you can't> > *change* NN's cached username/password values from one set to another?> > If so then yes, this does seem to be the biggest drawback (but no worse than> > using the standard> > ugly-dialog method). Brice said he is getting around that by having the> > user 'logout' which> > actually goes to another page protected to another group (or> > authenticated to another group).> > What does he mean? I am not sure. He said-> >> > The solution are:> > - quit your browser session before switching personality [or]> > - use logout button that send the user to a page protected> > (on the same domain) to another group, which 'reset' his> > username/password settings. Then Login again. > >> > I think he means have the user go to a page which will show the [protect] or> > [authenticate] if> > username/password are not *blank* (null values)... which resets the> > username/password values in NN> > cache back to as if fresh from launch (after the user enters *nothing* in the> > ugly dialogue box and> > proceeds). If not that, then I do not understand what he means, and would> > love to hear a more> > elaborate explanation. It would be nice if Brice would jump in to explain...> >> >> > Or when you said it worked the first time and after that.... did you mean> > that even if you *quit*> > NN and relaunch then it will not let you in even once? If so, then that is> > truely baffling. If so,> > then what it is that you and Ken have in common that Brice and I don't?> >> > I use the following (which *always* works to login after quitting and> > relaunching NN):> > browser=G3 MacOS 9.04, NN 4.7> > server = Linux/intel , Webcat 3.08> >> > -John> >> > Kalin Mintchev wrote:> >> >> hi Brice:> >>> >> 4) on protected.tpl (and others pages)> >> use the usual [protect groupname] tag> >>> >> this says [protect groupname]. can this work with [authenticate] too?> >> i saw and tryed the demo it works for me.> >> the thing is i'm trying it (the idea you posted in The Form> >> authentication trick) with the [authenticate] tag and i get the same> >> results described by Kenneth Grome. it worked the first time and after> >> that....> >> it seems everything works fine untill the browser gets to that login2.tpl> >> is there something else i'm missing?.> >> this is what i do:> >> page #1:> >> form with input names password and username, action=logon1.html.> >> page #2: logon1.html> >> [showif NotFound=[lookup> >> db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotF> >> ound]]> >> [redirect page1.html]> >> [/showif]> >> [showif [password]![lookup> >> db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotF> >> ound]]> >> [redirect page1.html]> >> [/showif]> >> [search> >> db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eq> >> passdatarq=[password]]> >> [showif [numFound]=0]> >> [redirect page1.html]> >> [/showif]> >> [/search]> >> [redirect> >> http://[encrypt][username]:[password][/encrypt]@www.mysite.com/login2.html]> >>> >> page #3: logon2.html> >> in the header:> >> >> HTTP-EQUIV=REFRESH CONTENT=0;URL=http://www.mysite/protected.html>> >> the protected page has this in it:> >> [showif NotFound=[lookup> >> db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotF> >> ound]]> >> [authenticate Unauthorized User]> >> [/showif]> >> [showif [password]![lookup> >> db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotF> >> ound]]> >> [authenticate Unauthorized User]> >> [/showif]> >> [search> >> db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eq> >> passdatarq=[password]]> >> [showif [numFound]=0]> >> [authenticate Unauthorized User]> >> [/showif]> >> [/search]> >>> >> so when i put real username and passwrd in page1.html i reach login2.html> >> and then the ugly dialog box shows up.> >> it never shows me the protected.html.> >> if i enter the password and username again there everything is ok> >>> >> any comment will be helpful.> >> thanks.> >> >> > -------------------------------------------------------------> > This message is sent to you because you are subscribed to> > the mailing list .> > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to> > > > Web Archive of this list is at: http://search.smithmicro.com/> > -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > Web Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Associated Messages, from the most recent to the oldest:
Do you mean you need WebCat to sign some outgoing e-mails? You need PGPobviously and a shell script to do the signing. Note that you may needto hard-code your PGP password into the script; it has been some yearssince I toyed with PGP. I am not sure if you need the authenticationpassword to sign a file, or only to encrypt it.In any case, this is mostly not a WebCat issue; I would look to any PGPFAQ's on the net.John PeacockBob Minor wrote:> > I need to PGP sign some outgoing emails on my *nix box, has anyone done this> and if so how.> > Sincerely,> > Robert Minor> Director of Internet Services> ------------------------------------------------------------> Cybermill Communications> http://www.cybermill.com http://www.merchantmaker.com> > Providing Ecommerce and interactive website development and> hosting services on Macintosh, Windows NT, Unix, and AS/400.> > > From: John Butler > > Reply-To: (WebCatalog Talk)> > Date: Mon, 31 Jul 2000 11:38:32> > To: (WebCatalog Talk)> > Subject: Re: The Form authentication trick> >> > Kalin,> >> > yes for the purposes of this 'trick', [authenticate] works as well.> >> > when you say it worked the first time and after that.... do you mean that> > when using NN, you can't> > *change* NN's cached username/password values from one set to another?> > If so then yes, this does seem to be the biggest drawback (but no worse than> > using the standard> > ugly-dialog method). Brice said he is getting around that by having the> > user 'logout' which> > actually goes to another page protected to another group (or> > authenticated to another group).> > What does he mean? I am not sure. He said-> >> > The solution are:> > - quit your browser session before switching personality [or]> > - use logout button that send the user to a page protected> > (on the same domain) to another group, which 'reset' his> > username/password settings. Then Login again. > >> > I think he means have the user go to a page which will show the [protect] or> > [authenticate] if> > username/password are not *blank* (null values)... which resets the> > username/password values in NN> > cache back to as if fresh from launch (after the user enters *nothing* in the> > ugly dialogue box and> > proceeds). If not that, then I do not understand what he means, and would> > love to hear a more> > elaborate explanation. It would be nice if Brice would jump in to explain...> >> >> > Or when you said it worked the first time and after that.... did you mean> > that even if you *quit*> > NN and relaunch then it will not let you in even once? If so, then that is> > truely baffling. If so,> > then what it is that you and Ken have in common that Brice and I don't?> >> > I use the following (which *always* works to login after quitting and> > relaunching NN):> > browser=G3 MacOS 9.04, NN 4.7> > server = Linux/intel , Webcat 3.08> >> > -John> >> > Kalin Mintchev wrote:> >> >> hi Brice:> >>> >> 4) on protected.tpl (and others pages)> >> use the usual [protect groupname] tag> >>> >> this says [protect groupname]. can this work with [authenticate] too?> >> i saw and tryed the demo it works for me.> >> the thing is i'm trying it (the idea you posted in The Form> >> authentication trick) with the [authenticate] tag and i get the same> >> results described by Kenneth Grome. it worked the first time and after> >> that....> >> it seems everything works fine untill the browser gets to that login2.tpl> >> is there something else i'm missing?.> >> this is what i do:> >> page #1:> >> form with input names password and username, action=logon1.html.> >> page #2: logon1.html> >> [showif NotFound=[lookup> >> db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotF> >> ound]]> >> [redirect page1.html]> >> [/showif]> >> [showif [password]![lookup> >> db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotF> >> ound]]> >> [redirect page1.html]> >> [/showif]> >> [search> >> db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eq> >> passdatarq=[password]]> >> [showif [numFound]=0]> >> [redirect page1.html]> >> [/showif]> >> [/search]> >> [redirect> >> http://[encrypt][username]:[password][/encrypt]@www.mysite.com/login2.html]> >>> >> page #3: logon2.html> >> in the header:> >> >> HTTP-EQUIV=REFRESH CONTENT=0;URL=http://www.mysite/protected.html>> >> the protected page has this in it:> >> [showif NotFound=[lookup> >> db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotF> >> ound]]> >> [authenticate Unauthorized User]> >> [/showif]> >> [showif [password]![lookup> >> db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotF> >> ound]]> >> [authenticate Unauthorized User]> >> [/showif]> >> [search> >> db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eq> >> passdatarq=[password]]> >> [showif [numFound]=0]> >> [authenticate Unauthorized User]> >> [/showif]> >> [/search]> >>> >> so when i put real username and passwrd in page1.html i reach login2.html> >> and then the ugly dialog box shows up.> >> it never shows me the protected.html.> >> if i enter the password and username again there everything is ok> >>> >> any comment will be helpful.> >> thanks.> >> >> > -------------------------------------------------------------> > This message is sent to you because you are subscribed to> > the mailing list .> > To unsubscribe, E-mail to: > > To switch to the DIGEST mode, E-mail to> > > > Web Archive of this list is at: http://search.smithmicro.com/> > -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > Web Archive of this list is at: http://search.smithmicro.com/-------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
John Peacock
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
all records returned. (1997)
Followup question re: checksum for credit cards? (1997)
multiple credit card merchant accounts/processors (1997)
Plugin or CGI or both (1997)
Fun with dates (1997)
Calendar (1997)
can WC render sites out? (1997)
Problems appending to database (1997)
[OT] Resource of Internet Stats (2004)
Polls (2003)
[OT] (waaaay OT) (2004)
emailer (1997)
Comments in db? (1997)
[WebDNA] Vers 6.2 for Windows (2018)
Problems getting parameters passed into email. (1997)
Million product store (2003)
email [title] (1997)
Price + Texte (1999)
Some Questions (1997)
Comments in db? (1997)