Loading ...
Sorry, an error occurred while loading the content.

Re: Web Service CGI authentication

Expand Messages
  • daymobrew@yahoo.com
    ... How about using basic authentication that the web server has built in. Here is some information about basic authentication in Apache:
    Message 1 of 3 , Mar 4, 2004
    • 0 Attachment
      --- In perl-beginner@yahoogroups.com, "kvclarkusa" <kvclarkusa@y...>
      wrote:
      > I am writing a web service client that is a CGI (and is hosted on a
      > shared unix web server) and the web service server requires a
      > username and password for authentication.
      >
      > I do not want to put the username and password inside the actual cgi
      > for security reasons, i.e. something like this is what I want to
      > avoid:
      >
      > $username = "aaaa";
      > $password = "123456";
      > $result = ConnectToWebservice ($username,$password);
      >
      > What are the best practices from a security perspective to deal with
      > this, i.e. do I store the username, password in another file, and if
      > yes how would I set this up/reference it so it is secure, is there
      > another way to handle, etc?
      >
      > Thank you,

      How about using basic authentication that the web server has built in.

      Here is some information about basic authentication in Apache:
      http://httpd.apache.org/docs/howto/auth.html#basic
    Your message has been successfully submitted and would be delivered to recipients shortly.