LassoScript Utility
Basics Browse Detail


Tag Link [Auth_Custom] Category Administration
Type Process Source Available Yes
Support Preferred Version 7.0
Change Unchanged Data Source Any
Output Type None Security Tag
Implementation LDML Sets Lasso 8.5, Lasso 8.0, Lasso 7.0


[Auth_Custom] checks the current authentication values which were sent with the HTTP header. If they correspond to the specified username and password then the page is processed normally. The username will be compared case insensitive and the password will be compare case sensitive.

Otherwise, the visitor is prompted with an authentication dialog. They will not be able to see the format file which contains this tag unless they provide the specified username and password.

The optional realm parameter will be used by the client's Web browser to identify how the username and password will be used. If the same realm parameter is used on multiple pages the browser will re-transmit the username and password automatically without re-prompting the client. The realm defaults to 'Lasso Security'.

The [Auth_Custom] tag will usually be one of the first tags in a format file.

The username and password can alternately be specified as arrays in order to allow one of a number of users to view a page. Both arrays should be of the same length. The username will be found in the first array and the matching element in the second array will be checked to see if the password matches.


[Auth_Custom: 'Username', 'Password', -Realm='Realm']

  Auth_Custom: 'Username', 'Password', -Realm='Realm';

  (Array: 'Username1','Username2'),
  (Array: 'Password1','Password2'),


Required Parameters
'Username' The custom username to authenticate against (does not have to be configured in Lasso security).
'Password' The custom password to authenticate against.
Optional Parameters
-Realm The realm for the client prompt.
-NoAbort If specified the tag will not [Abort] after altering the HTTP header.
-AuthTag A custom tag reference can be passed to the -AuthTag parameter. The tag will be passed the username and realm and should return the password for the user.


To restrict a page to a custom username and password:

Use the [Auth_Custom] tag with a custom username, password, and realm as a parameters. Each visitor will need to enter this username and password in order to view the contents of the Web page. This tag is useful for authenticating a user that is not necessarily configured in Lasso Security. The custom realm will be displayed in the authentication dialog box when the user logs in, and can be used in conjunction with other realms on the Web server.

[Auth_Custom: 'Custom_User_Name', 'Custom_Password', 'Custom_Realm']