how to pass user and password to an .htaccess page using php

graziano

Hi all,

I have a webform to permit some user to login on neomail (Webmail software) ; on the webform they enter user ($user) and a password ($password) ; after that a simple php script was passing the $user and $password results in this way

<?
header("Location: http://$user:$password@mydomain.com/neomail.php");
?>

OK , it was working fine for years . It's stopped to work latest week after latest IE security patch !

With latest IE patch , http://user:password@domain.com is NO more allowed .

So , now, I am searching an alternative way to login my users
to http://$user:$password@host/neomail.php

I don't know if exists a php solution . I searched for hours on php documentation (header and authentication) , found nothing.
Any idea ?

Thank you.

dave420

The latest IE patch removed support for authentication-in-URLs, so user:password@site.com doesn't work. Which, if you ask me, is an inconvenience, but necessary, seeing as how many people were being conned through various manipulations of that standard.

As for passing it through to neomail, I can't help you. Have you tried replicating the form Neomail uses to get the username/password? If you copy the form's logical structure (the form/input tags, etc.) and make sure the target is accurate, it might be possible to change the user's login screen that way.

Let me know if I'm off the mark with what you want to do!

dave