I run a small commercial web site that offers business to
business order entry. We are using Basic Authentication
to validate our users. However it doesn't work if the
user accesses the web via a proxy server. Is there a
workaround? What other options are there?
I've considered handling the authentication myself via
CGI forms, but I'm not sure how I would define a "session".
Could cookies work? I've never used them before.
Some of the areas that require authentication are
static HTML, but most are CGI generated. How would
you check a cookie when a static page is requested?