open new window

leena

Hello everyone,

Sorry this is probably a really simple question, but I need to open a new window without PHP_AUTH_USER and PHP_AUTH_PW passed to that browser window.

Just to give you more information:
I have one page that I login to with one username and password, and then within that page there is a link that will open a new browser window and you will be asked to login again (using a DIFFERENT username and password).

My problem is that when I go and login to the second page (using a different password), and then close that screen and go back to the original browser window it asks me for my username and password again (for that first window).

How can I get these 2 window to be completely separate. I don't want the PHP_AUTH_USER and PHP_AUTH_PW to carry over to each window.

Any help is greatly appreciated. Thanks for your time.

Hiccup

PHP_AUTH_USER and PHP_AUTH_PW can only be set once per session. The only way to enter a new one is to close the browser down and restart it.

You can do what you're doing, but you're going to have to use one login as PHP_AUTH_USER and PHP_AUTH_PW and a different, probably form based one for the other login. You can call the variables whatever you want, (ie $user and $pass).

I know you are looking to use http authentication for both but it's not php-possible!

(I've tried it before as well...)

Hope that helps.

codeDV

Try locating the two scripts in different directories. If this is one script you'll have to split it..............

I know that when you use the servers authentication you can only password protect directories. When password protected access to a file in that directory will require authentication by the server.

If the first authentication is successful the browser then stores the username and password in a file on the client side machine. Only directoires can be password protected by the server, so each further request for a file in the same directory by the browser requires authencation just like the first. As the user has already entered his details once these are passed in the HTTP header automatically.

As only directories can be password protected on the server the browser stores the following:

Username
Realm
Password
Password Protected directory

Therefore if another file in the same directory is requested and that file contains PHP which fools the browseri into authenticating it will fail to validate if the username and password are different. On entering the correct username and password the credentials for that directory are overwritten.

So locating the php file for the window that opens in another directory should cure it.