0004065: WWW-Authenticate

Mantis - Quercus

Viewing Issue Advanced Details

ID:

Category:

Severity:

Reproducibility:

Date Submitted:

Last Update:

4065

minor

always

06-02-10 10:07

12-13-11 14:05

Reporter:

sblommers

Platform:

Linux

Assigned To:

domdorn

OS:

Ubuntu

Priority:

normal

OS Version:

10.04

Status:

closed

Product Version:

4.0.8

Product Build:

Resolution:

fixed

Projection:

none

ETA:

none

Fixed in Version:

Summary:

0004065: WWW-Authenticate

Description:

Example 0000006 Basic HTTP Authentication example
[CODE]<?php
if (!isset($_SERVER['PHP_AUTH_USER'])) {
    header('WWW-Authenticate: Basic realm="My Realm"');
    header('HTTP/1.0 401 Unauthorized');
    echo 'Text to send if user hits Cancel button';
    exit;
} else {
    echo "
Hello {$_SERVER['PHP_AUTH_USER']}.

";
    echo "
You entered {$_SERVER['PHP_AUTH_PW']} as your password.

";
}
?>
[/CODE]
From: http://php.net/manual/en/features.http-auth.php [^] [^]

Put this code in auth.php and update to Google AppEngine.

Visit http://example.appspot.com/auth.php [^] [^]

You will be prompted for a username and password.

You will never reach the message, it will repeatedly prompt for a username and password.

This suggests that $_SERVER['PHP_AUTH_USER'] and $_SERVER['PHP_AUTH_PW'] are never populated.

I think this is a bug.

Steps To Reproduce:

<?php
if (!isset($_SERVER['PHP_AUTH_USER'])) {
    header('WWW-Authenticate: Basic realm="My Realm"');
    header('HTTP/1.0 401 Unauthorized');
    echo 'Text to send if user hits Cancel button';
    exit;
} else {
    echo "
Hello {$_SERVER['PHP_AUTH_USER']}.

";
    echo "
You entered {$_SERVER['PHP_AUTH_PW']} as your password.

";
}
?>

Additional Information:

This is the same as bug 4000 http://bugs.caucho.com/view.php?id=4000 [^] that should be fixed for 4.0.7 and SVN but I can't seem te get this to work and I cannot find any trace to php/082h
php/082i

Relationships

has duplicate

0004403

closed

PHP_AUTH_USER

Attached Files:

Notes