Edit Report a Bug

    ssh2_auth_password

    (PECL ssh2 >= 0.9.0)

    ssh2_auth_passwordAuthenticate over SSH using a plain password

    Descrierea

    ssh2_auth_password ( resource $session , string $username , string $password ) : bool

    Authenticate over SSH using a plain password. Since version 0.12 this function also supports keyboard_interactive method.

    Parametri

    session

    An SSH connection link identifier, obtained from a call to ssh2_connect().

    username

    Remote user name.

    password

    Password for username

    Valorile întoarse

    Întoarce valoarea true în cazul succesului sau false în cazul eșecului.

    Exemple

    Example #1 Authenticating with a password

    <?php
    $connection     ssh2_connect('shell.example.com'22);

    if (    ssh2_auth_password($connection'username''secret')) {
      echo     "Authentication Successful!\n";
    } else {
      die(    'Authentication Failed...');
    }
    ?>

    add a note add a note

    User Contributed Notes 3 notes

    up
    2
    sgchris at gmail dot com
    9 years ago
    Please note that the function ssh2_auth_password raises PHP warning(!) on bad authentication. To avoid the warning, use the "silence" ("@") operator.

    <?php
    $ssh     = ssh2_connect($host);
    if (    false === $ssh) {
        die(    'connection failed');
    }

    $auth = @ssh2_auth_password($ssh, $user, $password);
    if (    false === $auth) {
        die(    'authentication failed');
    }
    ?>
    up
    -10
    wally at soggysoftware dot co dot uk
    17 years ago
    This function is useful for authenticating website clients against local (or remote) Unix users.

    I'd played around with Apache+PAM, various mod_auths and homebrewed shell programs and even NIS, but to authenticate a user against a Unix shadow file fundamentally requires root priviledges, so either your PHP script needs root or an external program needs it's sticky bit set.  Both of these have *serious* security implications.

    Using SSH, the overhead is obviously going to be greater but you're trusting a root service that's been (and continues to be) really well tested.  Just try authing with SSH against localhost (or another host if you want).
    up
    -14
    noels01 at gmx dot net
    19 years ago
    Do not try to authenticate or log in more than once on a ssh2 connection. It won't work. You'll need a new connection via ssh2_connect() which will result in a poor performance if you're doing several connects to the same server.
    add a note add a note
    To Top