Re: CGI and REMOTE_USER

George Phillips <phillips@cs.ubc.ca>

Mail folder: WWW Talk Jan 94-present
Next message: Rob McCool: "Re: CGI and REMOTE_USER"
Previous message: Vinay Kumar: "Re: sd access through a WWW server"
In-reply-to: Markus Stumpf: "CGI and REMOTE_USER"
Reply: Rob McCool: "Re: CGI and REMOTE_USER"

Date: 18 Jan 94 13:53 -0800
From: George Phillips <phillips@cs.ubc.ca>
To: Markus Stumpf <stumpf@informatik.tu-muenchen.de>
Cc: <www-talk@www0.cern.ch>
In-reply-to: <94Jan18.223435mesz.311353@hprbg5.informatik.tu-muenchen.de>
Message-id: <7208*phillips@cs.ubc.ca>
Subject: Re: CGI and REMOTE_USER
Content-Length: 470

Well, you could set AUTH_TYPE to RFC931 and REMOTE_USER to the
string returned by the ident daemon but that would be wrong.
While many ident daemons return the user name, that is not
a requirement.

How about sticking the ident daemon response into an environment
variable like REMOTE_IDENT.  You should base64 or otherwise
encode it in case it contains binary data which can be a headache
for shell CGI scripts and even C CGI programs can't handle nulls.

			-- George