httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 52509] New: Resources protected by .htaccess file may not be accessible without excessive authentication prompts in IE
Date Mon, 23 Jan 2012 18:32:38 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=52509

             Bug #: 52509
           Summary: Resources protected by .htaccess file may not be
                    accessible without excessive authentication prompts in
                    IE
           Product: Apache httpd-2
           Version: 2.2.21
          Platform: PC
            Status: NEW
          Severity: normal
          Priority: P2
         Component: mod_auth_basic
        AssignedTo: bugs@httpd.apache.org
        ReportedBy: kmcgrail@pccc.com
    Classification: Unclassified


If I do the following:

- Have an html file or cgi in one dir

- reference images in another dir (dir #2)

- have dir #2 protected by .htaccess file with basic auth

- use IE to load the content, I am repeatedly asked for the password.  For
example, for 300 images, i will get about 7 requests.  There will be sometimes
a log line or two that the password is incorrect even though it is 100% typed
in the same repeatedly for the multiple requests.

- If I switch from .htaccess to using a <directory> command, the repeated
credential disappears.

This is using http 2.2.21 and was discussed on the mailing list.

While I expect the .htaccess to be more resource intensive, the fact that it
breaks operation with a browser as ubiquitous as IE 6,7,8 & 9 leads me to
believe this is a bug.

I have repeated this testing on multiple servers with multiple httpd versions
including 1.3 branches.

I can provide much more information as this has been discussed on the mailing
list but I think the core information above is the most helpful.

regards,
KAM

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message