[Chugalug] Access Control for LAMP

Dave Brockman dave at brockmans.com
Fri Oct 5 20:02:59 UTC 2012


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 10/5/2012 1:36 PM, Mike Harrison wrote:
> 
> 
> 1. using .htaccess files is a crude and nasty nasty way to do
> this. Works, but even I stopped doing in circa 199x?
> 
> 2. Basic/Simple auth over SSL (never plain text/http) is a great
> first step.

This is how I implement login to all my http code now.  I use a
database on the back-end, and my schema includes group memberships,
although I'm not 100% certain I have actually implemented permissions
based on group membership, although I do have an article bookmarked.

I should also define "all my http code", which so far in the past two
years has consisted of two small database apps.  Ugly as sin (I'm not
a front-developer, I like text too much) but functional.  Apache
configured to deny access in the non-SSL vhost, and the SSL vhost
requires basic-auth.

Regards,

dtb


- -- 
"Some things in life can never be fully appreciated nor
understood unless experienced firsthand. Some things in
networking can never be fully understood by someone who neither
builds commercial networking equipment nor runs an operational
network."  RFC 1925
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/

iEYEARECAAYFAlBvPPMACgkQABP1RO+tr2QLZwCeIVKS3B+bPIsrL4HrvjRgzTGB
5YQAni0JK6zJS2MF2JumexOyquqLB++9
=5hvX
-----END PGP SIGNATURE-----


More information about the Chugalug mailing list