CAN SOMEBODY SOLVE THIS?

svobi

user types in browser a url in this format:

how can i get this url into a variable only with php?

thx in advance

docdunning

Sorry - I don't understand what you are trying to do here. If you type that sort of stuff into the browser 'Address' line directly, you'll just get a "Cannot find server" error, surely. I'm not sure that php can intercept that and get it into a variable - there's no script active to do that.

But someone else may know better ...

Anon

try this:

http://www.yoursite.com/index.php?user=something@domain.com

Then create a file called "index.php" in your web document root...

echo $user;

?>

VOILA! You're done!

You can't do exactly as you've mentioned because something@domain.com is not a valid web URL.

So, in this example, you give it a valid url (http://www.yoursite.com/index.php) and then pass it the parameter of the email address you're trying to pass thru. (?user=something@domain.com)

Hope this helps.

Anon

Of course something@domain.com is a valid URL ! Don't forget that you can authenticate like this :

http://user:pwd@site.com

You can get the user with $REMOTE_USER.

Anon

OK, I've never seen this methodology before - so I tried something like this:

created a file called "index.php" on my web server, with this content:

echo $REMOTE_USER;

And then tried pointing to it with the following URL:

http://user:pwd@www.myserver.com.

Anyhoo, it didn't work - I got a blank page. This is different usage than anything I've seen before, can you give some more detail(s) on this?

Of course, I'm quite familiar with the methods I've espoused previously in this discussion.

-Ben

Anon

You didn't get anything here in $REMOTE_USER because Apache didn't create the corresponding environment variable; and it didn't create it because the directory wasn't protected. In this case, you can still retrieve it by looking at the WWW-Authenticate header (use getallheaders() function and "WWW_AUTHENTICATE" element) and decoding it.

svobi

thanks for your suggestions.
but when auth isn't used all the php-variables that have to do with this are empty.

it seems that my problem can't be solved only with php. (peoples in 6 different forums couldnt solve this)

i think i will have a look at apache mod_rewrite.

thanks again and bye

svobi

Anon

Hey, you know what?

We've been assuming perhaps a bit too much.

Try this:

<?
echo $PHP_AUTH_USER;
echo $PHP_AUTH_PW;
?>

A learning experience for everybody involved - never knew that things could work this way!

-Ben

Anon

I've done some tests today and here are my results.

First, I was mistaken yesterday, the browser sends a Authorization header, not WWW-Authenticate; the server sends the latter to notify the client that the directory is protected.

Then, when you go to user:pwd@site.com, the browser doesn't send directly the Authorization header (IE and NS behave like this). If the server returns a 401 status code, then the browser sends the login/password. So to retrieve them in PHP, do something like this :

$h=getallheaders();
if(!isset($h["Authorization"]))
{
//Force browser to send login/password
Header("HTTP/1.0 401 Not authorized");
Header("WWW-Authenticate: Basic realm=\"Test\"");
exit;
}
//Split Basic and encoded parts
$a=split(" ",$h["Authorization"]);
//Decode user/password
print base64_decode($a[1]);

Note : this will only work if both user and password are supplied. If not, the login popup will appear.

And now, the final question : what's the use of all this ?