dlee@usol.com wrote:
Zopatistas,
I need functionality that none of the UserManagers seem to address. I need to allow a user to elect to log in (and set AUTHENTICATED_USER) as opposed to have them access a restricted resource to trigger cookie authentication.
*Ahem* Actually, Membership *does* provide login/logout forms that do not require accessing a private section of a site.
I am essentially limited to GUF because it's the only thing I can install on my provider's system (I can't compile the LoginManager). Is there a way to allow the user to login at will, and still get AUTHENTICATED_USER set?
Ok, that's different. Dead Simple way(tm): Make page that *does* have a need for login. Put a link to it, call the link "login". When they access the page, they wil not have permission to see it, and will thus be given a request for authentication, the logging them in part. If you put this method in the root of your site, say calling it 'login' for an id, then you could put a link in your menuing system that calls it with an href of "login". Then, in your 'login' method/page, you set it up to redirect back to the page they were on when they clicked the login link. There are several examples of this part around; search the Mailing List(s) archives. Until such time as they do log in, the user will be 'Anonymous'. As such, you would make the appearance of the login link dependant on the AUTHENTICAT_USER having the Role 'Anonymous'. Without using a cookie login system, you _must_ access a restricted resource, even if it just a redirect. That is how basic Authentication works. If you are using cookie login, there are HowTos on that around as well. You just show the user the login page. Bill Anderson