Password-less authentication for web site

PHP programming forum. Ask questions or help people concerning PHP code. Don't understand a function? Need help implementing a class? Don't understand a class? Here is where to ask. Remember to do your homework!

Moderator: General Moderators

Post Reply
amir
Forum Contributor
Posts: 287
Joined: Sat Oct 07, 2006 4:28 pm

Password-less authentication for web site

Post by amir »

Hi All,

I'm looking for a way to allow users to "authenticate" on my web site without a password. Essentially doing the same as ssh public key authentication. I was hoping to to be able to email user who can access my site a certificate / token or something similar which they store on their machine. Then I would have a piece of PHP code to validate that certificate / token. If they could be validated then they could see the site - if not then they get redirected to another page explaining that access is denied.
Does anyone out ther have any ideas?

Thanks.
User avatar
Luke
The Ninja Space Mod
Posts: 6424
Joined: Fri Aug 05, 2005 1:53 pm
Location: Paradise, CA

Post by Luke »

User avatar
mibocote
Forum Newbie
Posts: 18
Joined: Sun Aug 20, 2006 9:51 am
Contact:

Post by mibocote »

You would need something that can interact with the clients filesystem (like a java applet) that can also interact with your server. You could also write a small firefox plugin that sends the key.
User avatar
neel_basu
Forum Contributor
Posts: 454
Joined: Wed Dec 06, 2006 9:33 am
Location: Picnic Garden, Kolkata, India

Post by neel_basu »

You Can Use Use fso Object with AJAX
User avatar
volka
DevNet Evangelist
Posts: 8391
Joined: Tue May 07, 2002 9:48 am
Location: Berlin, ger

Post by volka »

Client certificate authentication is usually handled by the webserver (or a webserver module) not a php script.
e.g. http://www.modssl.org/docs/2.8/ssl_howt ... uth-simple
Post Reply