The isapi authentication filter includes a feature that greatly simplifies tracking an authenticated user through multiple pages of a web site.
On every request for a file in the protected area a custom header is inserted into the request. The request is accessible from dynamic pages as the cgi variable 'HTTP_USER'. This eliminates the usual need for developers to track users via url variables, hidden forms variables or cookies.
An additional development benefit of having the user name available at all times is the ability to efficiently maintain all session state on the server side using database or object storage.
Site Naming Conventions
table of contents
full printable document
all rights reserved
design - eggworx.com