Forums: Back End:

[edit - snip it all away]

Trying something different:

I'm now protecting a directory via .htaccess and using apache to do the authentication.

Ok - so its probably because the register_global_variabls in the .ini file is set to off.

Anyone know a way around this? I'm working on a shared server so don't have any control over this parameter.

I think I missed the start of the post, but you can probably still use $_SERVER['REMOTE_USER'];

Yep - that's the one thanks.

And yeah - I edited out all the dross that was causing me grief yesterday. I found that hosting company had put mcuh of the functionality I was trying to build in place already, so I was just re-inventing the wheel.

Originally posted by: Technomancer
Ok - so its probably because the register_global_variabls in the .ini file is set to off.

just a note for the future mate, if you ever come up against something like this again and think that all would be ok if you could only just turn on register_global_vars - DON'T DO IT! It's the devil, a security nightmare, one of the worst features of PHP.

Thanks DBM - reading around the subject yesterday I understand why it was done and why it now defaults to Off.