search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Added full support for MasterKey password to encrypt stored passwords
[CGIscriptor.git] / Private / index.html
blob01f503ef047b2b03abfaaca37c12ace0906dae4a
1 <html>
2 <head>
3 <title>
4 Private data
5 </title>
6 <script type="text/javascript">
7 <SCRIPT TYPE="text/ssperl" SRC="./JavaScript/CGIscriptorSession.js"></SCRIPT>
8
9 window.onload = function() {
10 loadSessionData (CGIscriptorSessionType, CGIscriptorChallengeTicket);
11 return true;
12 };
13
14 </script>
15
16 <script type="text/javascript">
17 <SCRIPT TYPE="text/ssperl" SRC="./JavaScript/sha.js"></SCRIPT>
18 </script>
19 </head>
20 <body>
21 <p ALIGN=RIGHT><a href="?LOGOUT">Logout</a></p>
22 <p ALIGN=RIGHT><a href="ChangePassword.html">Change Password</a><br />
23 <a href="CreateUser.html">Create New User Account</a>
24 </p>
25 <h1 align=CENTER>Private data: You are now logged in as <em><script type="text/ssperl" CGI='$LOGINUSERNAME=""'>$LOGINUSERNAME</script></em></h1>
26 <p align=CENTER>Logged in from <script type="text/ssperl" CGI='$LOGINIPADDRESS="" $LOGINPATH="" $SESSIONTYPE @CAPABILITIES="TEST"'>
27 my $Caps = "(".join(", ",@CAPABILITIES).")" if @CAPABILITIES;
28 "$LOGINIPADDRESS $LOGINPATH <br />Session type: $SESSIONTYPE $Caps";
29 </script></p>
30 <p align=CENTER><a href="manual.html">Go to manual</a></p>
31
32 <A NAME="SESSIONTICKETS"><H2 ALIGN="CENTER">SERVER SIDE SESSIONS AND ACCESS CONTROL (LOGIN)</H2></A>
33 <p>
34 An infrastructure for user acount authorization and file access control
35 is available. Each request is matched against a list of URL path patterns.
36 If the request matches, a Session Ticket is required to access the URL.
37 This Session Ticket should be present as a CGI parameter or Cookie:
38 </p>
39 <p>
40 CGI: SESSIONTICKET=&lt;value&gt;<br />
41 Cookie: CGIscriptorSESSION=&lt;value&gt;</p>
42 <p>
43 The example implementation stores Session Tickets as files in a local
44 directory. To create Session Tickets, a Login request must be given
45 with a LOGIN=&lt;value&gt; CGI parameter, a user name and a (doubly hashed)
46 password. The user name and (singly hashed) password are stored in a
47 PASSWORD ticket with the same name as the user account (name cleaned up
48 for security).
49 </p>
50
51 </body>
52 </html>
A flexible HTML 4 compliant script/module for CGI-aware embeded Perl, shell-scripts, and other scripting languages, executed at the server side.