| View previous topic :: View next topic |
| Author |
Message |
guest
Guest
|
 Posted: Tue Aug 27, 2002 2:23 pm Post subject: passwords |
 |
|
Hello,
sorry for being critical, but the method for creating password protected directories on Abyss1.1 is good but doesnt seem to allow for cgi-interaction.
I have a perl based site which generates password protection on the fly.
Is there any way to integrate this to the abyss engine?
thanks..
ab. |
|
| Back to top |
|
 |
aprelium
-
Joined: 22 Mar 2002
Posts: 6800
|
| Posted: Wed Aug 28, 2002 3:01 am Post subject: Re: passwords |
|
|
| guest wrote: | Hello,
sorry for being critical, but the method for creating password protected directories on Abyss1.1 is good but doesnt seem to allow for cgi-interaction.
I have a perl based site which generates password protection on the fly.
Is there any way to integrate this to the abyss engine?
thanks..
ab. |
[ A small note: It was preferred that your post was in section 1.1 Beta as it is not related to the latest stable version 1.0.7 ]
Your question is a little bit technical. We choosed by design to include the users database in the abyss.conf. We haven't followed other web servers model (although not that many support what you ask for).
Access control is meant for static content. Interactivity isn't targeted. So the better way is to build your script in a way that it handles its access control alone (using session for example).
Anyway, here are 2 methods to change/add users in the abyss.conf:
* You can write a script that handles the entire rewrite of the abyss.conf
file when a password is changed. This is possible and should not be a
problem.
* But the "clean" way to do that is to simulate the modification of a user
password using the console. This can be achieved by sending HTTP requests to
the console.
Here is an example of such a request to send (after connecting to
127.0.0.1:9999)
| Code: | GET /save?$username=jack&$Password0=theripper&$Password1=therippser&+user=1
HTTP/1.0
Authentication: Basic xxxxxxxxxxx |
You can then ignore the response (you should of course be sure that the
passwords are good enough).
To restart the server, you must issue the following request
| Code: | GET /save?*run=1 HTTP/1.0
Authentication: Basic xxxxxxxxxxx |
xxxxxxxxxxxx is equal to MD5( admin-login & ":" & admin-password)
& is the string concatenation operator. Notice also that +user and $Password1 can be found easily in the useradd.chl file in the chl directory.
If you have more questions about that, please post them on 1.1 Beta section in the forum or send it to beta@aprelium.com .
_________________
Support Team
Aprelium - http://www.aprelium.com |
|
| Back to top |
   |
|
Gate
-
Joined: 22 Mar 2003
Posts: 1
Location: Brooklyn, NYC
|
| Posted: Mon Mar 24, 2003 9:15 pm Post subject: Login for first page on website ??? |
|
|
Hi , Just read about the passord topice here and Have a Question, My website is up and running with Abyss new version and What i need is when my ppl connect to the site address a login window will appear requesting User Name And Password then once correct the first page will come up. It it possible with Abyss and how ? ..
Been trying scripts added to the index.htm but seems unsecrue..
Gate :roll: |
|
| Back to top |
|
|
aprelium
-
Joined: 22 Mar 2002
Posts: 6800
|
| Posted: Mon Mar 24, 2003 10:21 pm Post subject: Re: Login for first page on website ??? |
|
|
| Gate wrote: | Hi , Just read about the passord topice here and Have a Question, My website is up and running with Abyss new version and What i need is when my ppl connect to the site address a login window will appear requesting User Name And Password then once correct the first page will come up. It it possible with Abyss and how ? ..
Been trying scripts added to the index.htm but seems unsecrue..
Gate :roll: |
For a tutorial on how to have password protected directories, please read http://www.aprelium.com/forum/viewtopic.php?t=544 .
_________________
Support Team
Aprelium - http://www.aprelium.com |
|
| Back to top |
|
|
|
