httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Naaman Musawwir" <naa...@fourthhousesecurity.com>
Subject Re: mod_auth
Date Fri, 15 Nov 2002 03:54:03 GMT


> On Fri, 15 Nov 2002, Naaman Musawwir wrote:
> > I wanted to know about how this module keeps track of the logged in
> > user. We always get the value of user in request_rec strucrure
> > (r->user). If we store something manually in this structure that
> > vanishes after serving the current request.
>
> It doesn't.  HTTP is stateless.  The client keeps track of it and sends
> the userid and password in the HTTP request headers with each and every
> request.  Apache reads it and shoves it in the request_rec.

Thanks. So, how can we keep track of any custom values? Cookies or session.
Some useful API to maintain state for that?

>
> See: http://httpd.apache.org/docs/howto/auth.html#basic
>
> Joshua.
>


Mime
View raw message