Solved

phpMyAdmin Login with IIS 6.0

Posted on 2006-06-15
2
300 Views
Last Modified: 2013-12-12
I have a secure website setup where users have to enter a username and password to enter the site. The password protection is setup in IIS. Some of my users use phpMyAdmin. Is there a way to login to phpMyAdmin automatically with the username and password they supplied when they logged into the site? Or, is there a way to retrieve the username and password they entered using php? Thanks.
0
Comment
Question by:rbichon
2 Comments
 
LVL 9

Accepted Solution

by:
LinuxNubb earned 250 total points
ID: 16916087
You could look for $_SERVER['AUTH_USER'], and if it's a valid username it means the user authenticated.  This variable only works with IIS.  You would then have to do a type of 'hidden' login where you basically force a session on phpmyadmin.  So, if this variable is set, find the routine in phpmyadmin that validates a login and redirects to the phpmyadmin homepage.  
0
 
LVL 1

Author Comment

by:rbichon
ID: 16919322
I see what you mean. I could probably alter the config.inc.php file, which dictates how it should login, to search for the username and apply that along with the password. The only trick would be to encrypt the passwords.

I found another way of authenticating but it isn't run through IIS. In the config.inc.php file, you set $cfg['Servers'][$i]['auth_type'] = 'http'; which causes php to handle the authentication. The only problem is that this doesn't provide any directory security. Do you think this way posses any security issues? Keep in mind that we have a secure certificate in place and users have to connect through a secure connection.
0

Featured Post

Master Your Team's Linux and Cloud Stack!

The average business loses $13.5M per year to ineffective training (per 1,000 employees). Keep ahead of the competition and combine in-person quality with online cost and flexibility by training with Linux Academy.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Checking CSRF token within a function 36 76
google map tracking website 5 24
send post values 7 26
PHP Form Calculate Total Price 10 43
Since pre-biblical times, humans have sought ways to keep secrets, and share the secrets selectively.  This article explores the ways PHP can be used to hide and encrypt information.
3 proven steps to speed up Magento powered sites. The article focus is on optimizing time to first byte (TTFB), full page caching and configuring server for optimal performance.
Explain concepts important to validation of email addresses with regular expressions. Applies to most languages/tools that uses regular expressions. Consider email address RFCs: Look at HTML5 form input element (with type=email) regex pattern: T…
The viewer will learn how to look for a specific file type in a local or remote server directory using PHP.

832 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question