[K12OSN] pulling winders environment data into a form from a PHP webpage

Brian Chivers brian at portsmouth-college.ac.uk
Fri Nov 7 17:02:32 UTC 2008 

A quick google and it looks like Novell Edirecotry is a LDAP server so 
it's quite easy to do. I use LDAP authentication against our OpenLDAP 
servers a lot for some of our php / linux servers so if you'd like my 
config's let me know and I'll mail them over.

If you get it working you have access to PHP_AUTH_USER & PHP_AUTH_PW and 
once you have these you can do anything, the scary bit is when you look 
at the PHP_AUTH_PW and see that it's a plaintext password !!!!!

Brian

Doug Simpson wrote:
> Ok, but woudl that mean that I'd have to have authentication info on the server where php was running (the linux server)?
>
> interesting, but getting deeper by the second. . .
>
> DS
>
> Doug Simpson
> Technology Specialist
> De Queen Public Schools
> De Queen, AR
> simpsond at leopards.k12.ar.us
> "A Dollar Saved is a Dollar Earned"
>
>
>   
>>>> Brian Chivers <brian at portsmouth-college.ac.uk> 11/7/2008 9:24 AM >>>
>>>>         
> Could try the $PHP_AUTH_USER variable if they've had to login to the page. If not create a php_info 
> page that this will show you the variables.
>
> The scary one is it you use ldap authentication or similar what is stored *grin*
>
> Brian
>
> Doug Simpson wrote:
>   
>> Unique request. . .
>>
>> Is there a way to write an input field in a webpage that will pull environment data from winders and enter it into an input field in a php webpage?
>>
>> I am working on a system for bellwork (things the students must do first thing when the bell rings) and I would like the webpage they view and fill out with the daily bellwork to pull the login name of the currently logged-in windows user into a hidden field for submission to the teacher.
>>
>> Two reasons:
>>
>> A. Students couldn't cheat.
>>
>> B. The teacher knows who did.
>>
>> C. The teacher knows if they did it.
>>
>> Ok, there was three. . .
>>
>> I am using a script that takes input from the student, like name, period, grade, etc.
>>
>> The teacher edits a simple text file with the day's instructions in it and that is placed using include.
>>
>> The students have places to respond and a submit button at the end.
>>
>> It then emails the results to a specified email account.
>>
>> But with the student being able to enter the name themselves, a single student could enter the data for any number of them. If it pulled the currently logged in user's name and submitted that along with, the teacher would know if cheating was going on.
>>
>> Just a weird, unique request. . . 
>>
>> Thanks!
>>
>> Doug
>>
>> P.S. The webpage is php, running on a linux server and the students are logging in on windows workstations from a Novell server.
>>
>>
>>
>> Doug Simpson
>> Technology Specialist
>> De Queen Public Schools
>> De Queen, AR
>> simpsond at leopards.k12.ar.us 
>> "A Dollar Saved is a Dollar Earned"
>>
>>
>>
>> _______________________________________________
>> K12OSN mailing list
>> K12OSN at redhat.com 
>> https://www.redhat.com/mailman/listinfo/k12osn 
>> For more info see <http://www.k12os.org>
>>     
>
>
> ------------------------------------------------------------------------------------------------
>     The views expressed here are my own and not necessarily
>  
>                 the views of Portsmouth College    
>
> _______________________________________________
> K12OSN mailing list
> K12OSN at redhat.com 
> https://www.redhat.com/mailman/listinfo/k12osn 
> For more info see <http://www.k12os.org>
>
>
> _______________________________________________
> K12OSN mailing list
> K12OSN at redhat.com
> https://www.redhat.com/mailman/listinfo/k12osn
> For more info see <http://www.k12os.org>
>   


------------------------------------------------------------------------------------------------
    The views expressed here are my own and not necessarily
 
                the views of Portsmouth College

More information about the K12OSN mailing list