Thanks for the help on this. I've got a simple version working using the Apache::htpasswd module. I guess I'll got with that, making it persist with CGI::Session. Work with encryption later.