rather than a roll your own authentication, it makes good sense
to simply configure the server to require Basic Authentication.

Only if you're using a identity store that basic will work with (eg, not
a customer number/password in the customer file) and you don't care
about performance. :-) Remember the process for basic authentication:

Client -> Server: Can I have /page.htm
Server -> Client: Nope (401 error). I don't know you. Can you identify?
Client -> Server: Oh, sorry, sure. I'm base64(User:Password)
Server -> Client: OK, here's the page.

That is, you have to make two roundtrips. With the roll your own you
make just one, sending the data in the first place.

-Walden



As an Amazon Associate we earn from qualifying purchases.

This thread ...

Follow-Ups:
Replies:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.