Return-Path: 
 <modperl-return-21599-apmail-modperl-archive=apache.org@apache.org>
Delivered-To: apmail-modperl-archive@apache.org
Received: (qmail 67784 invoked by uid 500); 24 Dec 2001 08:50:17 -0000
Mailing-List: contact modperl-help@apache.org; run by ezmlm
Precedence: bulk
list-help: <mailto:modperl-help@apache.org>
list-unsubscribe: <mailto:modperl-unsubscribe@apache.org>
list-post: <mailto:modperl@apache.org>
Delivered-To: mailing list modperl@apache.org
Received: (qmail 67772 invoked from network); 24 Dec 2001 08:50:17 -0000
Message-ID: <009d01c18c58$156d9b80$4535edc1@tinypc>
Reply-To: "Chris Thompson" <c.thompson@waverley-internet.co.uk>
From: "Chris Thompson" <c.thompson@waverley-internet.co.uk>
To: <modperl@apache.org>
Subject: Can I use mod_perl to pass authentication details to apache from an
 HTML form?
Date: Mon, 24 Dec 2001 08:49:46 -0000
Organization: Waverley Internet Design
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.00.2615.200
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200
X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N

I would like to set up a password-protected area within my website where my
web design clients can preview changes to their sites before they go live.
Although I know how to password protect directories using .htaccess files, I
would prefer to bypass the standard grey Authorization pop-up screen and
instead let users enter their username / password details through an HTML
form (which I think would look more professional).

If possible, the system for authenticating / authorizing the user would also
redirect them to the appropriate directory for their site.  At present, the
only way I can think of to handle both the redirection and the
authentication is to have the user enter their details twice (once to
redirect using CGI, then again to authenticate)... and I'm sure there must
be a better way of doing it.

So my question is can this be done using mod_perl, and if so how might I
approach this?  I've read the relevant chapters of the Writing Apache
Modules book, but I'm a bit new at this and after lots of head-scratching
I'm afraid I don't find myself any closer to a solution.

Incidentally, I have control of a dedicated server running Redhat Linux 7,
which came pre-installed with apache and mod_perl.  Judging from the apache
configuration files, it appears that Apache::Registry is being used to
handle scripts in the /perl directory of my webspace, and I've successfully
managed to run a test script there.

Any advice would be much appreciated,

Chris

--
Waverley Internet Design
http://www.waverley-internet.co.uk