The Tibetan and Himalayan Library

Password Protecting Xml With Php

<h3 class="heading-h6"><a name="THDLToolboxHomegtDevelopersZonegtUsingPasswordProtectiongtPasswordProtectingXML" class="anchorpoint"></a><a href="/tools/wiki/Home.html">THDL Toolbox</a> > <a href="/tools/wiki/Developers%27%20Zone.html">Developers' Zone</a> > <a href="/tools/wiki/Using%20Password%20Protection.html">Using Password Protection</a> > Password Protecting XML</h3> <h3 class="heading-h1"><a name="PasswordProtectingXMLwithPHP" class="anchorpoint"></a>Password Protecting XML with PHP</h3>Contributor(s): Than GarsonNote: this procedure may be outdated and this documentation may need to be rewritten.To do this, the URL call has to be to a PHP file that pipes the results from the SaxonServlet into the browser. In the case of JIATS, there is an index.php file at the root level of the jiats folder. All sub folders then need to have a redirect to the root folder so people can't view the contents on those folders. The index.php file should have at the top code that checks to see if a cookie for the password has been set. If the password is not set, then it redirects to a login.php script. There are 3 main components to this part of the PHP:<ol><li>$_SERVER["QUERY_STRING"]: This PHP global variable contains the query string for the URL call. This is everything after the question mark "?". "QUERY_STRING" is the constant key for this.</li> <li>$HTTP_COOKIE_VARS["pwd"]: This PHP global hash-array contains the values for all the cookies in the document. It returns the value of the cookie whose name is given in the quotes. In this case, it is "pwd". Another alternative way of retrieving a cookie is the global variable $_COOKIE['pwd']. This is used in the login script below to get the "query" cookie.</li> <li>setcookie(cookie_name,cookie_value,duration): This command sets a cookie for the page. It has to be called before any <html> header information is sent. The duration is the amount of time in seconds that the cookie will remain active, after which it will expire.</li></ol>The code in the index.php for the journal is: <div class="code"><pre><?php $query = $_SERVER['QUERY_STRING']; // Get the query string $pwd = $HTTP_COOKIE_VARS["pwd"]; // get the "pwd" cookie value if($pwd != "let-me-in") { // if the "pwd" value is not equal to the password, for instance, "let-me-in", then … setcookie("query",$query,time()+3600); // set a cookie with the value of the query string to be used // once one gets in then print out an html file that redirects one to the login page ?> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/>  <meta http-equiv="refresh" content="0;url=/collections/journal/jiats/login.php"> <title>Journal of the International Association of Tibetan Studies</title> <link rel="stylesheet" type="text/css" href="/style/thdl-styles.css" /> </head> <body>Need to login … </body> </html> <?php exit; } ?> </pre></div> The login page is also a PHP file that prints out a simple login form and calls itself using POST. If the correct password is given, "let-me-in", then it sets that as the cookie "pwd" and redirects to the original index.php page, which now lets the user into the journal. The code for this login page is:<div class="code"><pre><?php $pwd = $_POST['pwd']; if($pwd == ' ') { $pwd = $HTTP_COOKIE_VARS["pwd"];} if($pwd!='let-me-in') { echo "<html><head><title>JIATS Not Yet Released for Public Viewing!</title>\n"; echo "<script type=\"text/javascript\" src=\"/scripts/thdl_scripts.js\"></script>\n"; echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"/style/thdl-styles.css\"/>\n"; echo "</head><body><script type=\"text/javascript\" src=\"/scripts/banner.js\"></script>\n"; echo "<div id=\"main\" class=\"text-heavy\"><h2>JIATS Validation</h2>\n"; echo "width: 500px; text-align: justify;\">The Journal of the International Association of Tibetan Studies has not yet been officially released. "; echo "To view it, you must be an approved member of the board with the appropriate password. Otherwise, the first issue will be released shortly. "; echo "Thank you for your patience! \n"; if(strlen($pwd) > 0) {echo "You entered " . $pwd . "!";} echo "<form method=\"post\" action=\"<img src="/" alt="external link: " title="external link"/><a href="http://orion.lib.virginia.edu/thdl/collections/journal/jiats/login.php\" target="rwikiexternal">http://orion.lib.virginia.edu/thdl/collections/journal/jiats/login.php\</a>">\n"; echo "<table width=\"50%\"><tr><td>Enter password: <input type=\"password\" name=\"pwd\" /></td></tr>\n"; echo "<tr><td><input type=\"submit\"/></td></tr></table></form></div></body></html>\n"; exit; } else { setcookie("pwd",$pwd,time()+43200); setcookie("query",""); ?> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"/> <?php $query = $_COOKIE['query]; if ($query == "") { echo "<meta http-equiv=\"refresh\" content=\"0;url=index.php\">"; } else { echo "<meta http-equiv=\"refresh\" content=\"0;url=index.php?$query\">"; } ?> <title>Journal of the International Association of Tibetan Studies</title> <link rel="stylesheet" type="text/css" href="/style/thdl-styles.css" /> </head> <body></body> </html> <?php } ?></pre></div> <h3 class="heading-h6"><a name="ProvidedforunrestrictedusebytheTibetanandHimalayanDigitalLibrary" class="anchorpoint"></a>Provided for unrestricted use by the Tibetan and Himalayan Digital Library</h3>

THL Home	About Us THL Overview First-Time Visitors Guide to Resources How to Cite Help Participation & Support Sponsors Status Reports THL URLs Contact Us
Collections	Multimedia Audio & Video Archive Images Maps Texts
Reference	Bibliographies Finding Aids Knowledge Maps Place Dictionary Transliteration Tibetan Dictionary Tibetan Translation Tool Tibetan-Phonetics Converter Tibetan-Wylie Converter
Places	Cultural Geography Interactive Map Maps Nepal Census Data Place Dictionary
Literature	Tibetan Canons Kangyur/Tengyur Collected Tantras of the Ancients Dilgo Khyentsé Catalog Literary Genres
Community	Social Connections Blogs Collaboration Worksites Communication Discussion Forums Events Mailing Lists THL Partners Tibetan News
Tools	Toolbox Prep Computer Software Technologies THL Research Lab Fonts:(Chinese Diacritics Nepali Tibetan )
Projects	Antiquities of Zhangzhung Drepung Monastery JIATS Meru Nyingpa Monastery Sera Monastery Projects Inventory Status Reports

THL Home	About Us THL Overview First-Time Visitors Guide to Resources How to Cite Help Participation & Support Sponsors Status Reports THL URLs Contact Us
Collections	Multimedia Audio & Video Archive Images Maps Texts
Reference	Bibliographies Finding Aids Knowledge Maps Place Dictionary Transliteration Tibetan Dictionary Tibetan Translation Tool Tibetan-Phonetics Converter Tibetan-Wylie Converter
Places	Cultural Geography Interactive Map Maps Nepal Census Data Place Dictionary
Literature	Tibetan Canons Kangyur/Tengyur Collected Tantras of the Ancients Dilgo Khyentsé Catalog Literary Genres
Community	Social Connections Blogs Collaboration Worksites Communication Discussion Forums Events Mailing Lists THL Partners Tibetan News
Tools	Toolbox Prep Computer Software Technologies THL Research Lab Fonts:(Chinese Diacritics Nepali Tibetan )
Projects	Antiquities of Zhangzhung Drepung Monastery JIATS Meru Nyingpa Monastery Sera Monastery Projects Inventory Status Reports

Tibetan and Himalayan Library - THL

Search

Toolbox Home

THL Toolbox

About Tools

General Links

THL Home

THL Apps

THL Navigation

THL Information

THL Connections

Upcoming Events

Subscribe: THL Updates

Support: Donate to THL

THL Help