You are here

Home » API reference » RESTful 7 » RestfulAuthenticationBasic.class.php » RestfulAuthenticationBasic

protected function RestfulAuthenticationBasic::getCredentials in RESTful 7

Get the credentials based on the $_SERVER variables.

Return value

array A numeric array with the username and password.

2 calls to RestfulAuthenticationBasic::getCredentials()
RestfulAuthenticationBasic::applies in plugins/authentication/RestfulAuthenticationBasic.class.php
Determines if the request can be checked for authentication. For example, when authenticating with HTTP header, return FALSE if the header values do not exist.
RestfulAuthenticationBasic::authenticate in plugins/authentication/RestfulAuthenticationBasic.class.php

File

plugins/authentication/RestfulAuthenticationBasic.class.php, line 80
Contains RestfulAuthenticationBasic

Class

RestfulAuthenticationBasic
@file Contains RestfulAuthenticationBasic

Code

protected function getCredentials() {
  $username = empty($_SERVER['PHP_AUTH_USER']) ? NULL : $_SERVER['PHP_AUTH_USER'];
  $password = empty($_SERVER['PHP_AUTH_PW']) ? NULL : $_SERVER['PHP_AUTH_PW'];

  // Try to fill PHP_AUTH_USER & PHP_AUTH_PW with REDIRECT_HTTP_AUTHORIZATION
  // for compatibility with Apache PHP CGI/FastCGI.
  // This requires the following line in your ".htaccess"-File:
  // RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
  if (!empty($_SERVER['REDIRECT_HTTP_AUTHORIZATION']) && !isset($username) && !isset($password)) {
    $authentication = base64_decode(substr($_SERVER['REDIRECT_HTTP_AUTHORIZATION'], 6));
    list($username, $password) = explode(':', $authentication);
    $_SERVER['PHP_AUTH_USER'] = $username;
    $_SERVER['PHP_AUTH_PW'] = $password;
  }
  return array(
    $username,
    $password,
  );
}