Solved

Force SSL to reauthenticate

Posted on 2006-07-14
2
265 Views
Last Modified: 2012-05-05
Using Apache 2.0.46 and PHP 4.4.1.  I've set up an administrative section to my site secured with SSL and .htaccess-style text files.  Part of the administrative section is the ability to manage the local employees, including adding/removing and changing passwords.  There are certain points at which I will rewrite the entirety of the text file to 'reconcile' my table-based employee list and the web server's access list.  My concern now is forcing an SSL reset on any existing sessions.

I've tried destroying the sessions, and that does not seem to work.  I get a new session id, etc., but my SSL login is maintained.  Is there any way to forcibly reset the SSL logins globally, and trigger this reset from PHP, HTTP headers, or similar manner?  Obviously, this needs to be solely server-side...the most the end user should see is the new login dialog box.
0
Comment
Question by:Steve Bink
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 50

Author Comment

by:Steve Bink
ID: 17113121
For reference, I found this in a PAQ:

http://support.microsoft.com/kb/q195192/

This details how to create an ActiveX control to do just what I need.  The problem is, however, that I'm using Linux and Apache, with Firefox on the client side.  This IS an intranet environment, though, so if this method will work I will readily accept it as a solution.  Can anyone provide an example of how to implement this solution?
0
 
LVL 1

Accepted Solution

by:
GhostMod earned 0 total points
ID: 17184828
Closed, 125 points refunded.

GhostMod
Community Support Moderator
0

Featured Post

Guide to Performance: Optimization & Monitoring

Nowadays, monitoring is a mixture of tools, systems, and codes—making it a very complex process. And with this complexity, comes variables for failure. Get DZone’s new Guide to Performance to learn how to proactively find these variables and solve them before a disruption occurs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Developer portfolios can be a bit of an enigma—how do you present yourself to employers without burying them in lines of code?  A modern portfolio is more than just work samples, it’s also a statement of how you work.
When the s#!t hits the fan, you don’t have time to look up who’s on call, draft emails, call collaborators, or send text messages. An instant chat window is definitely the way to go, especially one like HipChat. HipChat is a true business app. An…
Viewers will get an overview of the benefits and risks of using Bitcoin to accept payments. What Bitcoin is: Legality: Risks: Benefits: Which businesses are best suited?: Other things you should know: How to get started:
The viewer will learn how to dynamically set the form action using jQuery.

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question