On Mo, 1999-08-02 06:53:53 +0900, chas <panda@stripped> wrote:
> Wait, do I understand this correctly - Even after the first
> challenge (ie. once the user has been authenticated), all
> subsequent HTTP requests still result in Apache checking
> the username/password ?
Yes, that's because HTTP is a stateless protocol.
Technically there's no connection between two subsequent request, each
request is a self-contained event in it's own.
So any information that is to last must be passed on from HTTP request
to HTTP request (by the ways of HTTP authentication, cookies, path
information, or GET or POST parameters).
> Doesn't this mean that a single web page with 10 graphics will still
> result in 11 MySQL Apache-to-MySQL queries ?
Yes, I guess so. But maybe mod_auth_mysql does clever caching of the
authentication data? (I don't know.)
Martin Ramsch <m.ramsch@stripped> <URL: http://home.pages.de/~ramsch/ >
PGP KeyID=0xE8EF4F75 FiPr=52 44 5E F3 B0 B1 38 26 E4 EC 80 58 7B 31 3A D7