summaryrefslogtreecommitdiff
path: root/api/httpauth.inc.php
blob: 3e5d464a7fab42cffb3632c3c412334fe9848639 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
<?php
//  Provides HTTP Basic authentication of a user, and sets two variables, sId and username,
//  with the user's info.

function authenticate() {
    header('WWW-Authenticate: Basic realm="SemanticScuttle API"');
    header('HTTP/1.0 401 Unauthorized');
    
    die("Use of the API calls requires authentication.");
}


/* Maybe we have caught authentication data in $_SERVER['REMOTE_USER']
( Inspired by http://www.yetanothercommunitysystem.com/article-321-regle-comment-utiliser-l-authentification-http-en-php-chez-ovh ) */
if((!$_SERVER['PHP_AUTH_USER'] || !$_SERVER['PHP_AUTH_USER'])
&& preg_match('/Basic\s+(.*)$/i', $_SERVER['REMOTE_USER'], $matches)) {
list($name, $password) = explode(':', base64_decode($matches[1]));
$_SERVER['PHP_AUTH_USER'] = strip_tags($name);
$_SERVER['PHP_AUTH_PW'] = strip_tags($password);
}



if (!isset($_SERVER['PHP_AUTH_USER'])) {
    authenticate();
} else {
    require_once('../header.inc.php');
    $userservice =& ServiceFactory::getServiceInstance('UserService');

    $login = $userservice->login($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']);
    if (!$login) {
        authenticate();
    }
}
?>