[_] Sending directory username/password programmatically.
Amias Channer
something at amias.org.uk
Tue Apr 1 22:37:20 BST 2008
On Tue, 2008-04-01 at 18:44 +0100, Richard Price wrote: > On 01/04/2008, Jon Hadley <me at jon-hadley.com> wrote: > > Hello all, > > > Sending the url > > > > http://username:password@domain.com/directory/protected > > > > sort of works in Firefox (it doesnt cope well with refreshes for example). > > > > However this url method seems disabled in IE7 .... > > > > Thats because its not actually part of the http spec - erhem , ftp://ftp.isi.edu/in-notes/rfc2617.txt > MS removed it a > couple of years ago after a bout of security and phising flaws. microsoft ? specifications ? with their reputation ? > Have you considered NTLM at all? That has the ability to silently > send authentication details and there are a few modules for Apache > that implement it. too late for april fools but how about kerberos ? Toodle-pip Amias -- Freelance programming , consultancy and hardware builds blog.amias.org.uk * www.amias.org.uk * www.ecotalk.org.uk