hi,
of course you know following way how to authorize user:
if(!$REMOTE_USER)
{
Header("status: 401 Unauthorized");
Header("WWW-authenticate: basic realm=\"PHP4\"");
Header("HTTP/1.0 401 Unauthorized");
echo "Not Authorized.";
exit;
}
but my question is: once the user has a gained access to a NT domain, can i repeat this type of authorization for choosen scripts once again? $REMOTE_USER will be set then, so the condition above can not work. But when i use some simple way like
if(!$REMOTE_USER||$add_auth==1) ...
(not talking about the security of posting the value add_auth) then the var add_auth will be set everytime when user access this script, so it produces an infinite calling of auth process...
thank you in advance,
robert
