Mailing List Archive: 49091 messages
  • Home
  • Script library
  • AltME Archive
  • Mailing list
  • Articles Index
  • Site search
 

[REBOL] Antwort: Security for CGI scripts

From: sharriff:aina:med-iq at: 9-Oct-2000 14:44

>Hello! >I need to have a CGI script on a server which will allow >authorized persons to get access to read/write on the server. >As part of the CGI query string the username and password are >provided. >It will be used to update REBOL scripts on the server. >It will then be necessary to set the correct permissions >on the scripts. >My idea is to do something like this: >decode-cgi >if username and password is correct then > write/allow %filename [ read write execute ] filedata > notify administrator about action >else > warn administrator about action >end if >Does anyone have a better/safer/working idea to provide me with? >Best regards, >Peter Carlsson
Hi Peter! I trying my best to do the same thing. My solution is to present a form that validates the password and name. The form has a REBOL cgi script as an action that reads a file with a user list stored in blocks. Access types are flagged in the block, e.g [ user1 [ name "admin" read "yes" modify "no" ] ] the user is the presented with a new HTML page or form depending on the flags. The code is still unfinished because I would like to direct the output to another frame..which is still a puzzle. hope this feeble attempt helps somehow Sharriff Aina med.iq information & quality in healthcare AG