Conversion to Digest::SHA
[CGIscriptor.git] / Private / index.html
blob49852136f50fab5dbd9be62430673bbe982efa4c
1 <html>
2 <head>
3 <title>
4 Private data
5 </title>
6 <script type="text/javascript">
7 <SCRIPT TYPE="text/ssperl" SRC="./JavaScript/PlainPage.js"></SCRIPT>
8 </script>
9 </head>
10 <body>
11 <p>
12 <table width='100%'><tr>
13 <td style='text-align: left'><a href="/index.html">Home</a></td>
14 <td style='text-align: right'><a href="?LOGOUT">Logout</a></td>
15 </tr></table>
16 </p>
17 <p ALIGN=RIGHT><a href="ChangePassword.html">Change Password</a><br />
18 <a href="CreateUser.html">Create New User Account</a>
19 </p>
20 <h1 align=CENTER>Private data: You are now logged in as <em><script type="text/ssperl" CGI='$LOGINUSERNAME=""'>$LOGINUSERNAME</script></em></h1>
21 <p align=CENTER>Logged in from <script type="text/ssperl" CGI='$LOGINIPADDRESS="" $LOGINPATH="" $SESSIONTYPE @CAPABILITIES="TEST"'>
22 my $Caps = "(".join(", ",@CAPABILITIES).")" if @CAPABILITIES;
23 "$LOGINIPADDRESS $LOGINPATH <br />Session type: $SESSIONTYPE $Caps";
24 </script></p>
25 <p align=CENTER><script type="text/ssperl" CGI='$LOGINUSERNAME=""'>
26 $accountname = $LOGINUSERNAME;
27 $accountname =~ s/[^\w]/_/g;
28 if( -d "~/Private/$accountname")
30 "<a href='$accountname/index.html'>Go to home dir of <em>$LOGINUSERNAME</em></a><br />&nbsp;<br />";
32 else
34 "";
36 </script><a href="manual.html">Go to manual</a></p>
38 <A NAME="SESSIONTICKETS"><H2 ALIGN="CENTER">SERVER SIDE SESSIONS AND ACCESS CONTROL (LOGIN)</H2></A>
39 <p>
40 An infrastructure for user acount authorization and file access control
41 is available. Each request is matched against a list of URL path patterns.
42 If the request matches, a Session Ticket is required to access the URL.
43 This Session Ticket should be present as a CGI parameter or Cookie:
44 </p>
45 <p>
46 CGI: SESSIONTICKET=&lt;value&gt;<br />
47 Cookie: CGIscriptorSESSION=&lt;value&gt;</p>
48 <p>
49 The example implementation stores Session Tickets as files in a local
50 directory. To create Session Tickets, a Login request must be given
51 with a LOGIN=&lt;value&gt; CGI parameter, a user name and a (doubly hashed)
52 password. The user name and (singly hashed) password are stored in a
53 PASSWORD ticket with the same name as the user account (name cleaned up
54 for security). There is a <a href="/PrivateTutorial.html">Tutorial of the authorization
55 application</a>.
56 </p>
58 </body>
59 </html>