This extension is a simple http authentication system. It works as a filter in your controllers and you supply username/password pairs to allow users execute the actions. It makes for easy administration sections etc. nothing too fancy. It doesn't use Digest, that might be something for the future.
Resources ¶
Documentation ¶
Requirements ¶
- Yii 1.0.2 or above
Installation ¶
- Place the HttpAuthFilter.php under
protected/components
Usage ¶
See the following code example:
public function filters()
{
return array(
array(
'HttpAuthFilter',
'users'=>array('admin'=>'admin'),
'realm'=>'Admin section'
)
);
}
Change Log ¶
March 14, 2009 ¶
- Initial release.
Security bug
$this->users[$username] == $password
should be
$this->users[$username] === $password
or user will be able to log in by supplying any login and empty password.
undef == ''.
If you have any questions, please ask in the forum instead.
Signup or Login in order to comment.