6 <script type=
"text/javascript">
7 <SCRIPT TYPE
="text/ssperl" SRC
="./JavaScript/CGIscriptorSession.js"></SCRIPT
>
9 window
.onload = function() {
10 loadSessionData (CGIscriptorSessionType
, CGIscriptorChallengeTicket
);
16 <script type=
"text/javascript">
17 <SCRIPT TYPE
="text/ssperl" SRC
="./JavaScript/sha.js"></SCRIPT
>
21 <p ALIGN=RIGHT
><a href=
"?LOGOUT">Logout
</a></p>
22 <p ALIGN=RIGHT
><a href=
"ChangePassword.html">Change Password
</a></p>
23 <h1 align=CENTER
>Private data: You are now logged in as
<em><script type=
"text/ssperl" CGI='$
LOGINUSERNAME=
""'
>$LOGINUSERNAME
</script></em></h1>
24 <p align=CENTER
>Logged in from
<script type=
"text/ssperl" CGI='$
LOGINIPADDRESS=
"" $
LOGINPATH=
"" $SESSIONTYPE @
CAPABILITIES=
"TEST"'
>
25 my $Caps =
"(".join(
", ",@CAPABILITIES).
")" if @CAPABILITIES;
26 "$LOGINIPADDRESS $LOGINPATH <br />Session type: $SESSIONTYPE $Caps";
28 <p align=CENTER
><a href=
"manual.html">Go to manual
</a></p>
30 <A NAME=
"SESSIONTICKETS"><H2 ALIGN=
"CENTER">SERVER SIDE SESSIONS AND ACCESS CONTROL (LOGIN)
</H2></A>
32 An infrastructure for user acount authorization and file access control
33 is available. Each request is matched against a list of URL path patterns.
34 If the request matches, a Session Ticket is required to access the URL.
35 This Session Ticket should be present as a CGI parameter or Cookie:
38 CGI: SESSIONTICKET=
<value
><br />
39 Cookie: CGIscriptorSESSION=
<value
></p>
41 The example implementation stores Session Tickets as files in a local
42 directory. To create Session Tickets, a Login request must be given
43 with a LOGIN=
<value
> CGI parameter, a user name and a (doubly hashed)
44 password. The user name and (singly hashed) password are stored in a
45 PASSWORD ticket with the same name as the user account (name cleaned up