[mapguide-internals] Problem with Authorization/Authentication
of mapguide clients (not browser) in mapagent CGI
Kenneth Skovhede, GEOGRAF A/S
ks at geograf.dk
Fri Dec 5 15:30:18 EST 2008
I belive MapGuide uses regular HTTP authentication:
Maestro uses the .Net credential system to authenticate,
which I presume uses HTTP authentication.
You can also send the credentials by either a querystring or a form.
The fields are "USERNAME" and "PASSWORD".
If you are looking for security, you must use HTTPS/SSL on the webserver.
Regards, Kenneth Skovhede, GEOGRAF A/S
> Hi all,
> I need some information about how authentication is implemented between
> the mapguide clients and the mapagent CGI.
> I did some debugging of the webagent which showed that no conditions to
> authorize the access are meet regarding the environment variables passed
> in via the HTTP request from the mapguide client applications.
> I am able to access the server via a browser using mapadmin and request
> some data.
> The first authentication also fails but causes the browser to prompt me
> with a login window.
> The subsequent request then has the HTTP_AUTHORIZATION variable set
> which permits the request to be passed on the the mapguide server.
> When I try to access the mapagent with maestro or mapguide studio this
> does NOT HAPPEN
> and the failed authentication simply fails the login of the client.
> Can someone shed some light on this please?
> Which values are supposed to be passed from the mapguide clients?
> mapguide-internals mailing list
> mapguide-internals at lists.osgeo.org
More information about the mapguide-internals