用 PHP 进行 HTTP 认证

<?php

$valid_passwords = array (“mario” => “carbonell”);
$valid_users = array_keys($valid_passwords);

$user = $SERVER['PHP_AUTH_USER'];
$pass = $SERVER['PHP_AUTH_PW'];

$validated = (in_array($user, $valid_users)) && ($pass == $valid_passwords[$user]);

if (!$validated) {
header('WWW-Authenticate: Basic realm=“My Realm”');
header('HTTP/1.0 401 Unauthorized');
die (“Not authorized”);
}

// If arrives here, is a valid user.
echo “

Welcome $user.

“;
echo “

Congratulation, you are into the system.

“;

?>