HTTP Authentication Management
You can easily install this library using Composer. Just request the package with the following command:
composer require intervention/httpauthRead the full documentation for this library.
The workflow is easy. Just create an instance of Authenticator::class in the first step
and secure your resource in the second step.
To create authenticator instances you can choose between different methods.
use Intervention\HttpAuth\Authenticator;
// create http basic auth
$auth = Authenticator::basic(
'myUsername',
'myPassword',
'Secured Area',
);
// create http digest auth
$auth = Authenticator::digest(
'myUsername',
'myPassword',
'Secured Area',
);use Intervention\HttpAuth\Authenticator;
// alternatively choose DigestVault::class
$vault = new BasicVault(
'myUsername',
'myPassword',
'Secured Area',
);
$auth = new Authenticator($vault);use Intervention\HttpAuth\Authenticator;
// alternatively choose DigestVault::class
$vault = new BasicVault(
'myUsername',
'myPassword',
'Secured Area',
);
$auth = Authenticator::withVault($vault);After you created a HTTP authentication instance, you have to call secure()
to secure the resource. This results in a 401 HTTP response and the browser
asking for credentials.
$auth->secure();A character string can optionally be passed to the method. This is displayed if authentication fails. Output from template engines can also be used here.
$auth->secure('Sorry, you can not access this resource!');If you are using Apache and running PHP with CGI/FastCGI, check the server configuration to make sure the authorization headers are passed correctly to PHP:
https://support.deskpro.com/en/kb/articles/missing-authorization-headers-with-apache
This library is developed and maintained by Oliver Vogel
Thanks to the community of contributors who have helped to improve this project.
Intervention HttpAuth is licensed under the MIT License.