[newbie]apache authentication questions

grahamd at dscpl.com.au grahamd at dscpl.com.au
Tue Jun 13 06:35:51 CEST 2006


Steve Holden wrote:
> nuffnough at gmail.com wrote:
> Since HTTP authentication is managed by the browser it's difficult to
> integrate it with web application authentication: basically you have to
> choose between the two. There's no way for the server to tell the
> browser to start presenting the required authentication credentials
> except by raising a 401 (not authorised) error response, which is what
> makes the browser bring up its little popup.

It is not impossible though and in cases where you don't have a choice
but to use a HTTP authentication scheme, use of AJAX may be the
answer to still allowing use of a form based login scheme. See:

  http://www.peej.co.uk/articles/http-auth-with-html-forms.html

Graham




More information about the Python-list mailing list