#10 Adding support for session based authentication.

open
nobody
None
5
2009-09-16
2009-09-16
Tyler Bannister
No

I was able to enable external session based authentication with a few simple changes:

Change line 239 in auth.php from:
$MY_SERVER_VARS = $_SERVER;

to:
if (AUTH_ARRAY == 'SESSION') {
session_start();
$MY_SERVER_VARS = $_SESSION;
} else {
$MY_SERVER_VARS = $_SERVER;
}

and add a line to config.php:
define("AUTH_ARRAY", 'SERVER');

To enable session based authentication the usual steps for External authentication are followed plus AUTH_ARRAY must be set to SESSION. This allow a much wider array of PHP programs to integrated with IP Plan without messing around with HTTP based authentication schemes.

Discussion