Closed Potherca closed 7 years ago
To make things more secure (allowing the app to run on a remote server and have multiple users) I think using htpasswd might be the most straight-forward implementation. This would also mean we have a language-unspecific solution.
See http://httpd.apache.org/docs/2.0/mod/mod_auth.html and http://httpd.apache.org/docs/2.0/programs/htpasswd.html for details or http://weavervsworld.com/docs/other/passprotect.html for a low level explanation
The PHP manual also has a chapter on this: http://www.php.net/manual/en/features.http-auth.php
As for future proofing, as not to be stuck to apache (you never know), there are various replacement in various languages, like http://trac.edgewall.org/browser/trunk/contrib/htpasswd.py and http://elonen.iki.fi/code/misc-notes/htpasswd-php/
To make things more secure (allowing the app to run on a remote server and have multiple users) I think using htpasswd might be the most straight-forward implementation. This would also mean we have a language-unspecific solution.
See http://httpd.apache.org/docs/2.0/mod/mod_auth.html and http://httpd.apache.org/docs/2.0/programs/htpasswd.html for details or http://weavervsworld.com/docs/other/passprotect.html for a low level explanation
The PHP manual also has a chapter on this: http://www.php.net/manual/en/features.http-auth.php
As for future proofing, as not to be stuck to apache (you never know), there are various replacement in various languages, like http://trac.edgewall.org/browser/trunk/contrib/htpasswd.py and http://elonen.iki.fi/code/misc-notes/htpasswd-php/