Hey,
Basically my question is if PHP will integrate with NT file security. i.e. I redirect a user to a page with NT file security. The prompt would normally come up asking for authentication. I don't see how to do it with session vars. It would be nice to get PHP to pass the id and password to NT and handle the nasty details of security while presenting a pretty interface. Attached to a DB of course.
Thanks,
Dwight
Not exactly sure if I understand what you're asking, but here's some basic info. If you protect normal IIS pages (non-anonymous access), the user will get a 401 browser challenge. Meaning a header is returned that tells the browser that the user needs to type in a username and password. So the browser pops up a dialog box.
The user enters that info, press okay. IIS will retrieve this info and validate that the username and password are correct (IOW, credentials must match as defined in NT's user manager).
If you're trying to spoof NT into thinking that the user has already answered a 401 challenge, I can't really think of a way to do this in straight PHP.
If the user already HAS answered a 401 challenge on a different server, then the user-name and password won't be sent to the NT server because it's a different machine as far as the browser knows. So IIS will re-prompt the user.
If the user has already answered a 401 challenge on the same server, then IIS will automatically receive it and validate it.
Not sure which scenario you're describing but those are the basics around NT security.
Dave
===========================================
http://badblue.com/helpphp.htm
Free small footprint web server for Windows
Dave,
Thanks for the reply. I am not really trying to get around the NT security. I would like PHP to handle the dialog between the browser and the NT server. The user would not see the interchange. PHP merely checks my Db for the name and password, confirm validity and then connects to the page that is "secured" by the ACL.
Or am I better off just letting NT handle it? I know I am going to keep the name and password in two places(NT and D
.
Thanks,
Dwight
Dave o Dwight:
I have a question about Windows 2000 server and PHP...
All my pages are now in PHP but, what I need to setup Windows 2000 server to run PHP files on the web????
Please can you help me?