auth from linux filesystem?

johnh

Basically, the question is how can I do an http-authentication based on the users in the filesystem? I'm using shadow, but not pam.

Thanks
John

eduard

simple...
get the line which includes the user.. for example I say I'm 'Eduard' with password 'testme'
your linux userfile will look like
username:password:more info:blah:blah:blah
explode this line on ':' signs and take the first two places ([0] and [1])
now check where username = Eduard and remember this password (a string of stange charecters)
now encrypt the password this user sent ('testme')
and compare it with the password in the passwordfile.

if ($passFromFile = (encrypt($passUserSent))
{

check is ok

}

johnh

Wonderful, I'll give it a shot.

Thank you very much
John

johnh

Eduard, silly me but the shadow file is readable only by root. Any suggestions about how to get my script to read that file? I'd just like to allow my root user to move and manage files on the server. http-auth for root seems to be the only way I can think of.

Thanks
John

eduard

Auch! erhm.. let's think!
have you tried to chmod or chown the file before opening, and swicht it back to what it was after closing the file?

Anon

Since I would need to be root in order to chmod, I can't do that one either.

🙁