Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations bkrike on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

perl CGI script env var problems REMOTE_USER

Status
Not open for further replies.
johanfalkman

johanfalkman

Programmer
May 18, 2001
2
SE
Newbie on cgi/perl..

Made an inlog with .htaccess, when logged in and calling a cgi script in the url: on exlorer, working fine, REMOTE_USER=logged in user.
But when calling the same script from an website, the REMOTE_USER doesn't seem to exist, how is this possible??
Need to know the REMOTE_USER becuase going to write to file REMOTE_USER.txt.
The script is in the same folder as .htaccess and .htpasswd.
/Johan.
 
Sort by date Sort by votes
Many of the cgi environment variables are unreliable at best. If you are using basic authentication (.htaccess) you can try the following subroutine. It parses and decodes the HTTP_AUTHORIZATION variable (which seems to be more reliable) to get the logon info.
Code: 
sub GetLogon {

my($authtype,$authstring) =
   split(' ', $ENV{'HTTP_AUTHORIZATION'});

return "unknown" unless $authtype =~ /basic/i;

# We COULD use the following two lines, but it would include
# a lot of code that we don't really need much.

#use MIME::Base64 ();
#$decoded = MIME::Base64::decode($encoded);

# The following code comes from perlfaq9

# remove non-base64 chars
$authstring =~ tr[A-Za-z0-9+/][]cd;
# convert to uuencoded format
$authstring =~ tr[A-Za-z0-9+/][ -_];
# compute length byte
$len = pack("c", 32 + 0.75*length($authstring));
# uudecode and print	
my $authstring = unpack("u", $len . $authstring);

# Now we have userid:password. Split off just the userid
my ($user,undef) = split(':', $authstring);

return $user;

} # GetLogon
Tracy Dryden
tracy@bydisn.com

Meddle not in the affairs of dragons,
For you are crunchy, and good with mustard.
 
Upvote 0 Downvote
thanks for the tip,

But the problems remains, the sub function only returns "unknown",

my($authtype,$authstring) =
split(' ', $ENV{'http_AUTHORIZATION'});

return "unknown" unless $authtype =~ /basic/i;

So is the authtype not /basic/i ????, newbie on the subject so I quite don't get the point...

The script finds the REMOTE_USER if I point to the script directly in the Adress url: in explorer, but not if a website points to the url: ????

Regards /

Johan Falkman, desperate for help!!!!!
 
Upvote 0 Downvote
HTTP_AUTHORIZATION needs to be in ALL CAPS. Try printing out the value of $ENV{'HTTP_AUTHORIZATION'}. The first word should be 'basic', followed by the "encrypted" userid and password. If it's not basic the function above won't work. I use this in a couple of places on one web site on it works.

FYI: Basic authentication is what is used when you have a .htaccess file, and the browser pops up it's own window to prompt for the userid and password.

Tracy Dryden
tracy@bydisn.com

Meddle not in the affairs of dragons,
For you are crunchy, and good with mustard.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

rob54321
  • Locked
  • Question
Perl how to read line from file with interpolation 1
Replies
6
Views
1K
rob54321
rob54321
eslie
  • Locked
  • Question
Perl script behavior makes no sense!!!
Replies
0
Views
381
eslie
eslie
Limbomusic
  • Locked
  • Question
Perl files getting accessed directly
Replies
0
Views
462
Limbomusic
Limbomusic
Anurag Sinha
  • Locked
  • Question
calling perl script on click of the button
Replies
0
Views
332
Anurag Sinha
Anurag Sinha
newbie1238585
  • Locked
  • Question
Perl how to read string in csv file * as wildcard operator
Replies
2
Views
606
mikrom
mikrom

Part and Inventory Search

Sponsor

Back
Top