NTLM/Apache/Perl Authentication

[Toby Corkindale]

Jason Tang wrote:
> Hi all
> 
> I'm in need of some help - mental help soon if I'm unlucky. I've been given
> the lovely task of prepopulating a text box with the username. I looked
> around and came across Apache::AuthenNTLM which seems to vaguely do what
> I'm after in terms of getting logon credentials from the browser.

I know that I did just that task myself, sometime in early to mid 2003;
I think you're heading down the right track, but I can't remember any
specifics! Sorry about that - I don't have any of the code around any
more either. It was a one-off for a contract with a borough council.

I think you need to make sure the machine running Apache is part of the
NT domain, and there were some key exchange things going on as part of that.

tjc.

> 
> I understand I needed to added to the server I'm running it all on to
> the trusted intranet machines list via IE6:
> 
> Tool -> Internet Options -> Security -> Local Intranet -> Site ->
> Advanced etc
> 
> .. which I've done, though doesn't show up anywhere after that, yet
> doesn't allow me to add it again because it exists on a list somewhere.
> 
> So what I think I need to do to get to the goal I'm after is to..
> 
> 1. ensure IE *IS* sending the logon credentials
> 2. the perl is set up correctly to receive the above
> 3. pluck it out of some object/hash ref for prepopulating a field
> 
> However if any of you guys have a better idea I'm all ears. I dont doubt
> I've been too busy banging my head against the wall I've probably missed
> something really obvious.
> 
> TIA
> 
> Jason