php causes 500 error to apache

kosmidd

When I use this script:

 
<?php
define("HTTP_AUTH_REALM", "Your authname here");
session_start();
if(!isset($_SESSION["uid"])) {
	if(!isset($_COOKIE['login_attempts'])){
		unset($_SERVER['PHP_AUTH_USER']);
		setcookie('login_attempts', 1,time()+30);
	}
	if(!isset($_SERVER['PHP_AUTH_USER'])){
		header("WWW-Authenticate: Basic realm=\"".HTTP_AUTH_REALM."\"");
		header("HTTP/1.0 401 Unauthorized");
		echo("This is for authorized users only.");
		exit;
	}
}
?>

I get a 500 server error.
PHP does not send correct the headers (maybe?)
Try it without the header informations.there is no error then.
I guess that is somthing with the php.ini.
Bellow is the session part of php.ini but i am not sure if this has anything to do with this.
Has anynone any ideas?

[Session]
session.save_handler = files
session.save_path = C:\ServerProgs\PHP\sessiondata
session.use_cookies = 1
session.name = PHPSESSID
session.auto_start = 0
session.cookie_lifetime = 0
session.cookie_path = /
session.cookie_domain =
session.serialize_handler = php
session.gc_probability = 50
session.gc_maxlifetime = 1440
session.referer_check =
session.entropy_length = 0
session.entropy_file =
;session.entropy_length = 16
;session.entropy_file = /dev/urandom
session.cache_limiter = nocache
session.cache_expire = 180
session.use_trans_sid = 0

url_rewriter.tags = "a=href,area=href,frame=src,input=src,form=fakeentry"

thanks very much

hand

On my WAMP it works without 500 error
Here are the definitions of my php.ini to compare

[Session]
session.save_handler = files
session.save_path = C:\TEMP
session.use_cookies = 1
session.name = PHPSESSID
session.auto_start = 0
session.cookie_lifetime = 0
session.cookie_path = /
session.cookie_domain =
session.serialize_handler = php
session.gc_probability = 1
session.gc_maxlifetime = 1440
session.referer_check =
session.entropy_length = 0
session.entropy_file =

;session.entropy_length = 16
;session.entropy_file = /dev/urandom
session.cache_limiter = nocache
session.cache_expire = 180
session.use_trans_sid = 1

url_rewriter.tags = "a=href,area=href,frame=src,input=src,form=fakeentry"

Content of cookie

login_attempts
1
localhost/test/
1024
1892708608
29527052
1596298608
29527052
*

kosmidd

Thanks hand but no, nothing changed.
I just can't get it.
😕
What is the problem?
Maybe it's not the session part that has the problem.
It seems to write the session file in the specified directory but it has no content.
Maybe the problem is with the headers that php sends.
When I take out the //header("HTTP/1.0 401 Unauthorized");
It echos "This is for authorized users only" with no server error, and it's like the header WWW-Authenticate never exist.
Maybe this is Apache's misconfiguration?
Where are the headers controled?
Any ideas would be very very helpful because I run out of ideas.

Thanks very much to every "helper"

hand

500 means Internal Server Error - The HTTP Authentication hooks in PHP are only available when it is running as an Apache module and is hence not available in the CGI version - Are you sure that php is running as module and not as CGI?

Does this script also generate a 500 error?

<?php
session_start();
if(!isset($_SESSION["uid"])) {
    if(!isset($_COOKIE['login_attempts'])){
        unset($_SERVER['PHP_AUTH_USER']);
        setcookie('login_attempts', 1,time()+30);
    }
    if(!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER[PHP_AUTH_USER] == ""){
        header('WWW-Authenticate: Basic realm="Your authname here"');
        header("HTTP/1.0 401 Unauthorized");
        echo("This is for authorized users only.");
        exit;
    }
}
Print "Welcome ".$_SERVER['PHP_AUTH_USER'];
?>

kosmidd

Yes. It also generates the same server error.
I set up PHP as CGI and not as a module because I found it easier
I'll try to correct this.
Nothing works when I send headers (most headers)
All headers need to be php installed as a module?

hand

If you want to use HTTP authentication with PHP you have to run PHP as Module!

http://php3.de/manual/en/printwn/features.http-auth.php

kosmidd

Thank you very much.
That's a very helpful manual I haven't read.
The problem now is that I cannot run php as module 🙁
I have apache2 and php 4.2.3 so I tried to add these lines:
LoadModule php4_module C:/ServerProgs/PHP/sapi/php4apache2.dll
AddType application/x-httpd-php .php
But apache fails to run.
What else can happen?
I think I'll never finish the project!!!

kosmidd

Thank you very much.
Everything works now.
You were very helpful
I have Apache 2.0.43 and I had php 4.2.3.There were a problem with these two version and PHP could not run as a module there
I installed PHP 4.3.0-pre2 and everything seems to work correct right now.
Thank you very much, once again

hand

You're welcome!