|  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #10470 Authorization not read by getallheaders()
Submitted: 2001-04-24 05:19 UTC Modified: 2001-07-22 12:56 UTC
From: stephane dot chardes at dgi2 dot finances dot gouv dot fr Assigned:
Status: Closed Package: HTTP related
PHP Version: 4.0.4pl1 OS: Linux (Mandrake 7.2)
Private report: No CVE-ID: None
View Add Comment Developer Edit
Welcome! If you don't have a Git account, you can't do anything here.
You can add a comment by following this link or if you reported this bug, you can edit this bug over here.
Block user comment
Status: Assign to:
Bug Type:
From: stephane dot chardes at dgi2 dot finances dot gouv dot fr
New email:
PHP Version: OS:


 [2001-04-24 05:19 UTC] stephane dot chardes at dgi2 dot finances dot gouv dot fr
I cannot read the Authorization header via getallheaders function.
But if i use phpinfo() in the same generated page, the Authorization header is viewable.

I act under Novell IChain Server & eDirectory, and Authentification is used to give access to protect ressources.

The script is the standard script shows as example for getallheaders and the phpinfo function that don't return the same data.

Configure Line
. /usr/local/bin/oraenv
./configure  \
--prefix=/usr \
--localstatedir=/var/log/httpd \
--enable-track-vars \
--enable-force-cgi-redirect \
--enable-safe-mode  \
--enable-magic-quotes  \
--enable-sigchild \
--enable-inline-optimization \
--enable-trans-sid \
--enable-sysvsem  \
--enable-sysvshm  \
--enable-ftp \
--with-apxs=/usr/sbin/apxs  \
--with-oracle  \
--with-oci8 \
--with-regex=php \
--with-config-file-path=/etc/httpd/conf \
--with-ttf \


engine	=On	; 
short_open_tag=	On;
y2k_compliance=	On; 

safe_mode_allowed_env_vars = PHP_, ORACLE_ ;
safe_mode_protected_env_vars = LD_LIBRARY_PATH, PATH	;

highlight.string	=	#DD0000
highlight.comment	=	#FF8000
highlight.keyword	=	#007700		=	#FFFFFF
highlight.default	=	#0000BB
highlight.html		=	#000000


charset = iso-8859-1  ; This sets the charset for the default text/html type served up by PHP

max_execution_time = 30     ; Maximum execution time of each script, in seconds
memory_limit = 8388608		; Maximum amount of memory a script may consume (8MB)

error_reporting	=	7;
display_errors	=	On	; Print out errors (as a part of the HTML script)
log_errors		=	On	; Log errors into a log file (server-specific log, stderr, or error_log (below))
track_errors	=	On	; Store the last error/warning message in $php_errormsg (boolean)
error_prepend_string = "<font color=ff0000>"   ; string to output before an error message
error_append_string = "</font>"                ; string to output after an error message
error_log	=	/var/log/httpd/php_log	; log errors to specified file
;error_log	=	syslog		; log errors to syslog (Event Log on NT, not valid in Windows 95)
warn_plus_overloading	=	On		; warn if the + operator is used with strings

magic_quotes_gpc	=	Off; magic quotes for incoming GET/POST/Cookie data
magic_quotes_runtime=	Off		; magic quotes for runtime-generated data, e.g. data from SQL, from exec(), etc.
magic_quotes_sybase	=	Off		; Use Sybase-style magic quotes (escape ' with '' instead of \')
track_vars			=	On		; enable $HTTP_GET_VARS[], $HTTP_POST_VARS[] and $HTTP_COOKIE_VARS[] arrays
;auto_prepend_file	= 
;auto_append_file	=

; Paths and Directories ;
include_path	="."                   ; UNIX: "/path1:/path2"  Windows: "\path1;\path2"
;doc_root		=					; the root of the php pages, used only if nonempty
;user_dir		=					; the directory under which php opens the script using /~username, used only if nonempty
;upload_tmp_dir	=	                ; temporary directory for HTTP uploaded files (will use system default if not specified)
upload_max_filesize = 2097152       ; 2 Meg default limit on file uploads
extension_dir	=	/usr/libexec/			; directory in which the loadable extensions (modules) reside

;UNIX Extensions

; Module Settings ;

define_syslog_variables	= Off	; Whether or not to define the various syslog variables,
								; e.g. $LOG_PID, $LOG_CRON, etc.  Turning it off is a
								; good idea performance-wise.  In runtime, you can define
								; these variables by calling define_syslog_variables()

[mail function]
SMTP			=	localhost			;for win32 only
sendmail_from	=	;for win32 only
sendmail_path	=						;for unix only, may supply arguments as well (default is sendmail -t)

[Debugger]	=	localhost
debugger.port	=	7869
debugger.enabled	=	False

; These configuration directives are used by the example logging mechanism.
; See examples/README.logging for more explanation.
;logging.method    = db
; = /path/to/log/directory

sql.safe_mode	=	On

session.auto_start= False
session.entropy_file = /dev/urandom
;session.entropy_length =  8192
session.referer_check = True
session.use_cookies = False

;uodbc.default_db		=	Not yet implemented
;uodbc.default_user		=	Not yet implemented
;uodbc.default_pw		=	Not yet implemented
uodbc.allow_persistent	=	On	; allow or prevent persistent links
uodbc.max_persistent	=	-1	; maximum number of persistent links. -1 means no limit
uodbc.max_links			=	-1	; maximum number of links (persistent+non persistent). -1 means no limit
uodbc.defaultlrl	=	4096	; Handling of LONG fields. Returns number of bytes to variables, 0 means passthru


Add a Patch

Pull Requests

Add a Pull Request


AllCommentsChangesGit/SVN commitsRelated reports
 [2001-06-12 16:22 UTC]
can you please post a sample script so that we might try to reproduce this?
 [2001-07-22 12:56 UTC]
no feedback after 40 days.
PHP Copyright © 2001-2020 The PHP Group
All rights reserved.
Last updated: Fri Dec 04 02:01:23 2020 UTC