Basic HTTP Authentication & PHP-FastCGI

Grzegorz Nosek grzegorz.nosek at
Wed Jul 23 14:48:17 MSD 2008

On śro, lip 23, 2008 at 11:40:26 +0100, Igor Clark wrote:
> Not sure if it does, but if so, doesn't this ("information that was  
> successful from the auth_basic/auth module") mean that auth is being  
> done twice, once by nginx + htpasswd file, and then by PHP + its own  
> auth scheme?

I didn't try it with nginx but in general you should be able to
implement your own authentication in the application (e.g. in PHP)
without any support from the web server other than passing
Authorization header from the client ($_SERVER["HTTP_AUTHORIZATION"] in

Best regards,
 Grzegorz Nosek

More information about the nginx mailing list