Re: The Form authentication trick
This WebDNA talk-list message is from 2000
It keeps the original formatting.
numero = 35456
interpreted = N
texte = thanks Johnok yes to both sections:it pops the ugly window every time now.i restarted the NN (and i'm on mac too ) it doesn't let me in at all.if enter i wrong password and username it brings me back to thepage1.html, but when i enter real ones i do get to the logon2.html andthen the protected.html pops up the window.same like last nite.any ideas?thanksOn Mon, 31 Jul 2000, John Butler wrote:> Kalin,> > yes for the purposes of this 'trick', [authenticate] works as well.> > when you say it worked the first time and after that.... do you mean that when using NN, you can't> *change* NN's cached username/password values from one set to another?> If so then yes, this does seem to be the biggest drawback (but no worse than using the standard> ugly-dialog method). Brice said he is getting around that by having the user 'logout' which> actually goes to another page protected to another group (or authenticated to another group).> What does he mean? I am not sure. He said-> > The solution are:> - quit your browser session before switching personality [or]> - use logout button that send the user to a page protected> (on the same domain) to another group, which 'reset' his> username/password settings. Then Login again. > > I think he means have the user go to a page which will show the [protect] or [authenticate] if> username/password are not *blank* (null values)... which resets the username/password values in NN> cache back to as if fresh from launch (after the user enters *nothing* in the ugly dialogue box and> proceeds). If not that, then I do not understand what he means, and would love to hear a more> elaborate explanation. It would be nice if Brice would jump in to explain...> > > Or when you said it worked the first time and after that.... did you mean that even if you *quit*> NN and relaunch then it will not let you in even once? If so, then that is truely baffling. If so,> then what it is that you and Ken have in common that Brice and I don't?> > I use the following (which *always* works to login after quitting and relaunching NN):> browser=G3 MacOS 9.04, NN 4.7> server = Linux/intel , Webcat 3.08> > -John> > Kalin Mintchev wrote:> > > hi Brice:> >> > 4) on protected.tpl (and others pages)> > use the usual [protect groupname] tag> >> > this says [protect groupname]. can this work with [authenticate] too?> > i saw and tryed the demo it works for me.> > the thing is i'm trying it (the idea you posted in The Form> > authentication trick) with the [authenticate] tag and i get the same> > results described by Kenneth Grome. it worked the first time and after> > that....> > it seems everything works fine untill the browser gets to that login2.tpl> > is there something else i'm missing?.> > this is what i do:> > page #1:> > form with input names password and username, action=logon1.html.> > page #2: logon1.html> > [showif NotFound=[lookup> > db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotFound]]> > [redirect page1.html]> > [/showif]> > [showif [password]![lookup> > db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotFound]]> > [redirect page1.html]> > [/showif]> > [search> > db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eqpassdatarq=[password]]> > [showif [numFound]=0]> > [redirect page1.html]> > [/showif]> > [/search]> > [redirect> > http://[encrypt][username]:[password][/encrypt]@www.mysite.com/login2.html]> >> > page #3: logon2.html> > in the header:> >
> HTTP-EQUIV=REFRESH CONTENT=0;URL=http://www.mysite/protected.html>> > the protected page has this in it:> > [showif NotFound=[lookup> > db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotFound]]> > [authenticate Unauthorized User]> > [/showif]> > [showif [password]![lookup> > db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotFound]]> > [authenticate Unauthorized User]> > [/showif]> > [search> > db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eqpassdatarq=[password]]> > [showif [numFound]=0]> > [authenticate Unauthorized User]> > [/showif]> > [/search]> >> > so when i put real username and passwrd in page1.html i reach login2.html> > and then the ugly dialog box shows up.> > it never shows me the protected.html.> > if i enter the password and username again there everything is ok> >> > any comment will be helpful.> > thanks.> > > -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list
.> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > Web Archive of this list is at: http://search.smithmicro.com/> -------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Associated Messages, from the most recent to the oldest:
thanks Johnok yes to both sections:it pops the ugly window every time now.i restarted the NN (and i'm on mac too ) it doesn't let me in at all.if enter i wrong password and username it brings me back to thepage1.html, but when i enter real ones i do get to the logon2.html andthen the protected.html pops up the window.same like last nite.any ideas?thanksOn Mon, 31 Jul 2000, John Butler wrote:> Kalin,> > yes for the purposes of this 'trick', [authenticate] works as well.> > when you say it worked the first time and after that.... do you mean that when using NN, you can't> *change* NN's cached username/password values from one set to another?> If so then yes, this does seem to be the biggest drawback (but no worse than using the standard> ugly-dialog method). Brice said he is getting around that by having the user 'logout' which> actually goes to another page protected to another group (or authenticated to another group).> What does he mean? I am not sure. He said-> > The solution are:> - quit your browser session before switching personality [or]> - use logout button that send the user to a page protected> (on the same domain) to another group, which 'reset' his> username/password settings. Then Login again. > > I think he means have the user go to a page which will show the [protect] or [authenticate] if> username/password are not *blank* (null values)... which resets the username/password values in NN> cache back to as if fresh from launch (after the user enters *nothing* in the ugly dialogue box and> proceeds). If not that, then I do not understand what he means, and would love to hear a more> elaborate explanation. It would be nice if Brice would jump in to explain...> > > Or when you said it worked the first time and after that.... did you mean that even if you *quit*> NN and relaunch then it will not let you in even once? If so, then that is truely baffling. If so,> then what it is that you and Ken have in common that Brice and I don't?> > I use the following (which *always* works to login after quitting and relaunching NN):> browser=G3 MacOS 9.04, NN 4.7> server = Linux/intel , Webcat 3.08> > -John> > Kalin Mintchev wrote:> > > hi Brice:> >> > 4) on protected.tpl (and others pages)> > use the usual [protect groupname] tag> >> > this says [protect groupname]. can this work with [authenticate] too?> > i saw and tryed the demo it works for me.> > the thing is i'm trying it (the idea you posted in The Form> > authentication trick) with the [authenticate] tag and i get the same> > results described by Kenneth Grome. it worked the first time and after> > that....> > it seems everything works fine untill the browser gets to that login2.tpl> > is there something else i'm missing?.> > this is what i do:> > page #1:> > form with input names password and username, action=logon1.html.> > page #2: logon1.html> > [showif NotFound=[lookup> > db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotFound]]> > [redirect page1.html]> > [/showif]> > [showif [password]![lookup> > db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotFound]]> > [redirect page1.html]> > [/showif]> > [search> > db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eqpassdatarq=[password]]> > [showif [numFound]=0]> > [redirect page1.html]> > [/showif]> > [/search]> > [redirect> > http://[encrypt][username]:[password][/encrypt]@www.mysite.com/login2.html]> >> > page #3: logon2.html> > in the header:> > > HTTP-EQUIV=REFRESH CONTENT=0;URL=http://www.mysite/protected.html>> > the protected page has this in it:> > [showif NotFound=[lookup> > db=/db/db.db&lookinField=user&value=[username]&returnField=user¬Found=NotFound]]> > [authenticate Unauthorized User]> > [/showif]> > [showif [password]![lookup> > db=/db/db.db&lookinField=user&value=[username]&returnField=pass¬Found=NotFound]]> > [authenticate Unauthorized User]> > [/showif]> > [search> > db=/db/db.db&groupsword=ww&wogroupsdatarq=[groups]&equserdatarq=[username]&eqpassdatarq=[password]]> > [showif [numFound]=0]> > [authenticate Unauthorized User]> > [/showif]> > [/search]> >> > so when i put real username and passwrd in page1.html i reach login2.html> > and then the ugly dialog box shows up.> > it never shows me the protected.html.> > if i enter the password and username again there everything is ok> >> > any comment will be helpful.> > thanks.> > > -------------------------------------------------------------> This message is sent to you because you are subscribed to> the mailing list .> To unsubscribe, E-mail to: > To switch to the DIGEST mode, E-mail to > Web Archive of this list is at: http://search.smithmicro.com/> -------------------------------------------------------------This message is sent to you because you are subscribed to the mailing list .To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://search.smithmicro.com/
Kalin Mintchev
DOWNLOAD WEBDNA NOW!
Top Articles:
Talk List
The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...
Related Readings:
Writefile, Raw & include (2002)
I found a bug ... (1997)
A Trigger Question (2000)
Repeating Fields (1997)
transferring values (1998)
Wrapping text (1998)
Any way to retrieve information from clipboard? (1999)
Banner ads example (1997)
File dates in WebCatalog .tmpl/.inc (1997)
Price question (1998)
[WebDNA] SpeedTest (2009)
help with autenticate (1998)
[WebDNA] Parsing JS value to WebDNA variable or
OS X Problem... (2000)
another url question (2000)
[WebDNA] naming math vars in v.7 (2010)
[OT] Search Engine Tips (2003)
[WebDNA] 6.2 Monitor (2012)
Need help with emailer- 2 issues (1997)
WebCat2b12 CGI Mac -- Problems propagating the cart through (1997)