Discussion:
basic authentication using password only?
(too old to reply)
Eric
2012-06-05 17:20:18 UTC
Permalink
Is there a way, in Apache 2.2.x, to secure a site subsection using
basic authentication with the username preloaded? Really, it could be
either the username or password that's preloaded the main thing is the
visitor only has to enter one element of the pair.

Previously, we "secured" the subsite by using JavaScript's password
facility but that got jettisoned when the site was overhauled.

Alternatively, is it possible to create a CGI (perl) front end to
Apache's basic authentication mechanism? I tried embedding the
username in the URL (i.e. http://***@blah.blah.com/stuff) but no
luck.

TIA
eric
Bjoern Hoehrmann
2012-06-06 02:17:05 UTC
Permalink
Post by Eric
Is there a way, in Apache 2.2.x, to secure a site subsection using
basic authentication with the username preloaded? Really, it could be
either the username or password that's preloaded the main thing is the
visitor only has to enter one element of the pair.
HTTP does not support this, and I am not aware of any proprietary ex-
tension that's well supported among browser that does it, so I think
you can assume that the answer is "no". Note that this is not a pro-
blem with Apache, but the underlying protocol; other software has the
same limitation, since the protocol does not support anything else.
--
Björn Höhrmann · mailto:***@hoehrmann.de · http://bjoern.hoehrmann.de
Am Badedeich 7 · Telefon: +49(0)160/4415681 · http://www.bjoernsworld.de
25899 Dagebüll · PGP Pub. KeyID: 0xA4357E78 · http://www.websitedev.de/
yamo'
2012-06-07 11:11:17 UTC
Permalink
Hi,
Post by Eric
Is there a way, in Apache 2.2.x, to secure a site subsection using
basic authentication with the username preloaded?
http://***@www.domain.invalid
--
Stéphane <http://pasdenom.info/fortune/?>
BOFH excuse #41:

interrupt configuration error
Loading...