httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Martin Kraemer <Martin.Krae...@mch.sni.de>
Subject Re: [PATCH] Send right type of "auth required"
Date Mon, 06 Dec 1999 21:47:01 GMT
On Sat, Dec 04, 1999 at 05:05:19PM +0000, Ben Laurie wrote:
> When mod_proxy is configured to do a ProxyPass but the location requires
> auth, the error code is erroneously converted to "proxy auth required".
> Here's a patch to fix that. Comments?

I think this solves the request situation you described. It also
makes it more clear in what state the proxy engine is.

Another proxy authorization problem remains, however:
It does not fix the case where a proxy server further up in the
proxy chain requires proxy authentication. We pass the 407 back
to the client, but when she re-requests with a proxy-auth header,
we strip it out (being a proxy) because we assume it's for us,
and as we don't want to pass auth info to the origin server. We
should only do that if we really know it was us who required
the proxy authorization.

    Martin
--
<Martin.Kraemer@MchP.Siemens.De>             |    Fujitsu Siemens
Fon: +49-89-636-46021, FAX: +49-89-636-41143 | 81730  Munich,  Germany

Mime
View raw message