diff options
| author |  mensonge | 2008-12-05 07:25:04 +0000 |
|---|---|---|
| committer | mensonge | 2008-12-05 07:25:04 +0000 |
| commit | d6889066c0d285bf59e89b484800443304585b68 (patch) | |
| tree | 8cc9aa5011a6e6a66061995a6f8186653be9695e /api/httpauth.inc.php | |
| parent | f7ccbde31062488cbf04b3e4c06a9aa590ebfedd (diff) | |
| download | scuttle-d6889066c0d285bf59e89b484800443304585b68.tar.gz scuttle-d6889066c0d285bf59e89b484800443304585b68.zip | |
Major Refactoring: finish transforming into object . Put and into header.inc.php.
git-svn-id: https://semanticscuttle.svn.sourceforge.net/svnroot/semanticscuttle/trunk@199 b3834d28-1941-0410-a4f8-b48e95affb8f
Diffstat (limited to 'api/httpauth.inc.php')
| -rw-r--r-- | api/httpauth.inc.php | 42 |
1 files changed, 19 insertions, 23 deletions
diff --git a/api/httpauth.inc.php b/api/httpauth.inc.php index d0198fd..5dd7444 100644 --- a/api/httpauth.inc.php +++ b/api/httpauth.inc.php @@ -1,37 +1,33 @@ <?php require_once('../header.inc.php'); -$userservice =& ServiceFactory::getServiceInstance('UserService'); // Provides HTTP Basic authentication of a user, and sets two variables, sId and username, // with the user's info. function authenticate() { - header('WWW-Authenticate: Basic realm="SemanticScuttle API"'); - header('HTTP/1.0 401 Unauthorized'); - - die(T_("Use of the API calls requires authentication.")); + header('WWW-Authenticate: Basic realm="SemanticScuttle API"'); + header('HTTP/1.0 401 Unauthorized'); + + die(T_("Use of the API calls requires authentication.")); } if(!$userservice->isLoggedOn()) { - /* Maybe we have caught authentication data in $_SERVER['REMOTE_USER'] - ( Inspired by http://www.yetanothercommunitysystem.com/article-321-regle-comment-utiliser-l-authentification-http-en-php-chez-ovh ) */ - if((!isset($_SERVER['PHP_AUTH_USER']) || !isset($_SERVER['PHP_AUTH_PW'])) - && preg_match('/Basic\s+(.*)$/i', $_SERVER['REMOTE_USER'], $matches)) { - list($name, $password) = explode(':', base64_decode($matches[1])); - $_SERVER['PHP_AUTH_USER'] = strip_tags($name); - $_SERVER['PHP_AUTH_PW'] = strip_tags($password); - } - - if (!isset($_SERVER['PHP_AUTH_USER'])) { - authenticate(); - } else { - require_once('../header.inc.php'); - $userservice =& ServiceFactory::getServiceInstance('UserService'); + /* Maybe we have caught authentication data in $_SERVER['REMOTE_USER'] + ( Inspired by http://www.yetanothercommunitysystem.com/article-321-regle-comment-utiliser-l-authentification-http-en-php-chez-ovh ) */ + if((!isset($_SERVER['PHP_AUTH_USER']) || !isset($_SERVER['PHP_AUTH_PW'])) + && preg_match('/Basic\s+(.*)$/i', $_SERVER['REMOTE_USER'], $matches)) { + list($name, $password) = explode(':', base64_decode($matches[1])); + $_SERVER['PHP_AUTH_USER'] = strip_tags($name); + $_SERVER['PHP_AUTH_PW'] = strip_tags($password); + } - $login = $userservice->login($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']); - if (!$login) { - authenticate(); + if (!isset($_SERVER['PHP_AUTH_USER'])) { + authenticate(); + } else { + $login = $userservice->login($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']); + if (!$login) { + authenticate(); + } } - } } ?> |