Ian Bicking: the old part of his blog

Fixing apache authentication comment 000

I have, but it requires username/password authentication, and that's part of what I want to avoid. It's also tied to HTTP authentication. I want to authenticate the request, not the username and password sent to me in one header. In various ways every mod_auth_* handler I found seemed deficient, mostly because of this. mod_auth_cookie (http://www.live-data.co.uk/development_folder/mod_auth_cookie_doc/view) kind of gets around this, but has other problems.
Comment on Re: Fixing Apache Authentication
by Ian Bicking