Hi all,
I'm currently using PHP_AUTH_USER to replace my old DBM method of securing website Admin sections.
It's working great, but I thought perhaps it can be more powerful and have more uses.
I currently use it with a pop-up box via
header("WWW-Authenticate: Basic realm=\"Admin Center\"");
My question is, if I were to use it on a website that uses a form to login, could I set the submitted form variable to
$_SERVER['PHP_AUTH_USER'] and then use header() or some other method to have the browser store it, as it does with my header statement above ??
If there was someway to do this, it would be a great way for me to pass along user's encrypted ID strings invisibly =)
Thanks in advance.
