Re: Interfacing perl with .htaccess and .htpasswd files...

I've used HTTPD::UserAdmin (alt.) and the User Manage CGI it comes with quite successfully in the past, but a quick peek on CPAN turns up Apache::Htpasswd (alt.) as another candidate.

As for "updateable but not viewable", a good practice is to locate the .htpasswd file outside your HTML tree so they can't be accessed directly with a web browser.

--k.

Comment on Re: Interfacing perl with .htaccess and .htpasswd files...

Replies are listed 'Best First'.
Re: Re: Interfacing perl with .htaccess and .htpasswd files... by greenFox (Vicar) on Jun 14, 2002 at 10:06 UTC
Going slightly offtopic however... Apache at least can (and should) be configured to deny viewing of .ht* files. The apache httpd.conf (or your local over-ride if allowed) needs a section like `<Files ~ "^\.ht"> Order allow,deny Deny from all </files>` [download] Which disallows download (view) of all files beginning with .ht See Module mod_access for more information. -- my $chainsaw = 'Perl';	[reply] [d/l]

Replies are listed 'Best First'.

Re: Re: Interfacing perl with .htaccess and .htpasswd files...
by greenFox (Vicar) on Jun 14, 2002 at 10:06 UTC

<Files ~ "^\.ht">
    Order allow,deny
    Deny from all
</files>
[download]

Module mod_access

--
my $chainsaw = 'Perl';

[reply]
[d/l]