show user/pass on members
 

Hey All

Anyone who knows how to show members user and pass on the site after they login.
this is for a network. so they have it for easy access to the other sites.

We use ccbill, paycom will also come later on. so this will have to work on both.

If you know this stuff and can set it up, please hit me up on icq for a talk.
293-676-165

Thanks

Bump for knowlegde on this one !!

you need to give them pass manually or there is no way, all passwords are crypted for sure so you cant get them

what do you mean with manually ?
There must still be some code, script what ever that shows it on the site after login right ?

Sites i have joined that uses ccbill, just had my user/pass standig on the site right after i login. that must be pulled from somewhere and somehow.

manualy i mean you choose the password for members. i am not good in english sorry. anyway, best way is to ask admins of sites where you saw that, they can help for sure :winkwink:

thanks for the suggestions.

1. it can work on random automated ccbill passes. so this is possiple for sure, it is on the site i saw it on.
the site i joined dosent even have a contact email. pro site right LOL
so can`t ask thee either. so have to search on and look for it, or hope someone on the big gfy`ers can help out.

In php, your authenticated username/pass are stored in the following variables:

$_SERVER["PHP_AUTH_USER"]
$_SERVER["PHP_AUTH_PW"]

You should be able to do something like

<?php
$user = $_SERVER["PHP_AUTH_USER"];
$pass = $_SERVER["PHP_AUTH_PW"];
echo "Username: $user<br />Password: $pass";
?>


I'm not completely sure if those are carried through the entire session. I'm pretty sure they will be though.

i think that should work. if you're using htaccess authentication, you can use what mlove posted. the username and password should pass between pages on same server. correct me if i'm wrong :)

i dont think this can work. you can take the password before it will be written to the htpasswd file, anyway you will get only password hashed like "tester:56LS4f/00EMHU" ... maybe you have to ask ccbill for the solution, they have to the only one who can help right. btw, there is some law about privacy or something that you dont have to know members password, or isnt? only admin will get password of member, but you dont have privileges to show it anywhere... just :2 cents:

I know with Strongbox you can display the username anywhere in the members area after they log in

Hey all.

Great things to go on here. ccbill cant / will not help on this. i have asked them.
But i will follow up on the code and see how it goes.

Thanks a lot
Rasmus

With Strongbox you can go one better - link from the members' area of one site to the
members' area of another without the user having to enter their user name and password
on the second site. That comes in handy because you don't have to synchronize the
passwords on the other sites as well as of course making it easier for the user.

Be careful with anything you do that displays the password. It would be easy to make
a mistake that would all someone to see a different users password.

My passwords were encrypted, and authentication data was displayed just fine.

Prior to PHP, TeenCat was right, passwords were treated as information known only
to the user. Only a HASH of the password was saved in the password file, so the only
way for a bad guy to get the password was if the user gave it to the bad guy.
Apache set a variable for the user name so scripts could tell who the usr was, but the
passsword was a secret only the user knew. PHP of course took it's priority list from
Windows, were security is a footnote on page #762, so the PHP guys dug into the
Apache request_rec, got the password submitted by the user, and put it in a nice
variable so that all a hacker has to do is get you to post on a PHP forum and in most
cases he can easily crack the forum to have it include your password in a comment
tag within your post.