perl-embperl mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Gerald Richter" <>
Subject RE: username and password with basic auth
Date Wed, 14 Sep 2005 03:41:35 GMT
> I haven't tried it, but you should just be able to get the 
> Authorization http header (via the apache request) and base64 
> decode it, giving you a 'username:password' string.

That will work,

($ret, $pw) = $req_rec -> get_basic_auth_pw ;

Will do it for you (see perldoc Apache).

> Of course, Basic Authentication is evil, and should only be 
> used for toy projects (since it doesn't scale) over HTTPS.

I see that, since password is transmitted in clear text, it is a security
problem in http, but where is the problem with https?


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message