Re: Re: mod_perl authorization and time-outs ... without cookies?


Perl: the Markov chain saw
	PerlMonks

Re: Re: mod_perl authorization and time-outs ... without cookies?

by TheHobbit (Pilgrim)

on Apr 20, 2002 at 10:24 UTC ( [id://160762]=note: print w/replies, xml )

Need Help??

in reply to Re: mod_perl authorization and time-outs ... without cookies?
in thread mod_perl authorization and time-outs ... without cookies?

Hi,
I don't like the ident in the URL, this make messy URLs :) (I agree, is a matter of personal taste).

As in any case you have a script which filter your request, why don't use POST method and made the section id a hidden param?

This leave you with the problem to force the person to retape his password. But this could be achieved (for instance) by aving the script generating the Realm name on a per-session base, so that when the session timeout, you start a new one which implies sending a new realm name to the client, so forcing it to ask again the password to the user.

Disclaimer: I do not know if the above approach would work, nor if it is secure to do it.

Cheers

Leo TheHobbit
GED/CS d? s-:++ a+ C++ UL+++ P+++>+++++ E+ W++ N+ o K? !w O? M V PS+++
PE-- Y+ PPG+ t++ 5? X-- R+ tv+ b+++ DI? D G++ e*(++++) h r++ y+++(*)

Comment on Re: Re: mod_perl authorization and time-outs ... without cookies?

In Section Seekers of Perl Wisdom

Domain Nodelet^?

www.com | www.net | www.org

Node Status^?

node history
Node Type: note [id://160762]
help

Chatterbox^?

How do I use this? • Last hour • Other CB clients

Other Users^?

Others about the Monastery: (5)

As of 2024-04-18 22:05 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Today I Learned

Voting Booth^?

No recent polls found