2007-02-27, 09:01 AM
Since I've got many of times help on my random projects.....why not try this one here as well...Since this has nothing to do with MyBB, feel free to ignore if you wish...I'll try similar question at http://www.experts-exchange.com/ as well probably...
I try to develop some tools for internal use at the office...but I want to obey the security-rules our company has set....
SETUP
------
- IIS6 running on a virtual server (Win2k3)
- CF7MX
- PHP5
I've managed to set up a directory for myself there that utilizes 'Digest Authentication for Windows domain server'.
So basically when I try to access a page in that directory, it requires me to give a username and password that is then verified against the LDAP (I suppose).
I tested it...and if I give incorrect userdetails for our domain, it gives me 401...and if I give the right ones...it shows me the page... So all is fine there...the authentication seems to work...
Now I want to go to the next level...I want my php/cfm/asp -page in this directory also to be able to identify WHO it is that came in to read the page. I can only assume that I need to query the LDAP for that right?
Since the first authentication doesn not store any cookie or anything like that that I could use later for identifying the visitor....how do I do that then?
So what do I need to do in order to have the username/firstname/lastname/employeenumber (all data-elements in the LDAP) usable as a variable on my subsequent pages in that directory? Basically I want to use these variables later in my tools to define personal access-levels.
cheers,
Kimmo
I try to develop some tools for internal use at the office...but I want to obey the security-rules our company has set....
SETUP
------
- IIS6 running on a virtual server (Win2k3)
- CF7MX
- PHP5
I've managed to set up a directory for myself there that utilizes 'Digest Authentication for Windows domain server'.
So basically when I try to access a page in that directory, it requires me to give a username and password that is then verified against the LDAP (I suppose).
I tested it...and if I give incorrect userdetails for our domain, it gives me 401...and if I give the right ones...it shows me the page... So all is fine there...the authentication seems to work...
Now I want to go to the next level...I want my php/cfm/asp -page in this directory also to be able to identify WHO it is that came in to read the page. I can only assume that I need to query the LDAP for that right?
Since the first authentication doesn not store any cookie or anything like that that I could use later for identifying the visitor....how do I do that then?
So what do I need to do in order to have the username/firstname/lastname/employeenumber (all data-elements in the LDAP) usable as a variable on my subsequent pages in that directory? Basically I want to use these variables later in my tools to define personal access-levels.
cheers,
Kimmo