I have a website protected by an .htaccess schema. Instead of using the login popup that is built in with .htaccess I have my own login page. Of course the problem is that after logging in using my custom page, the .htaccess popup will prompt again for user/pass. Right now as a solution i'm using
<script language=javascript>
location.href="http://$username:$password@members.example.com";
</script>
However, this places the user/pass pair visible in the URL which is not very desirable. Does anyone know of another way of solving this?
