Return-Path: 
 <modules-dev-return-283-apmail-httpd-modules-dev-archive=httpd.apache.org@httpd.apache.org>
Delivered-To: apmail-httpd-modules-dev-archive@locus.apache.org
Received: (qmail 86607 invoked from network); 8 Jan 2007 18:02:17 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2)
  by minotaur.apache.org with SMTP; 8 Jan 2007 18:02:17 -0000
Received: (qmail 48865 invoked by uid 500); 8 Jan 2007 18:02:24 -0000
Delivered-To: apmail-httpd-modules-dev-archive@httpd.apache.org
Received: (qmail 48847 invoked by uid 500); 8 Jan 2007 18:02:23 -0000
Mailing-List: contact modules-dev-help@httpd.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:modules-dev-help@httpd.apache.org>
List-Unsubscribe: <mailto:modules-dev-unsubscribe@httpd.apache.org>
List-Post: <mailto:modules-dev@httpd.apache.org>
List-Id: <modules-dev.httpd.apache.org>
Reply-To: modules-dev@httpd.apache.org
Delivered-To: mailing list modules-dev@httpd.apache.org
Received: (qmail 48837 invoked by uid 99); 8 Jan 2007 18:02:23 -0000
Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 08 Jan 2007 10:02:23 -0800
X-ASF-Spam-Status: No, hits=0.0 required=10.0
	tests=
X-Spam-Check-By: apache.org
Received-SPF: neutral (herse.apache.org: local policy)
Received: from [80.229.52.226] (HELO grimnir.webthing.com) (80.229.52.226)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 08 Jan 2007 10:02:14 -0800
Received: from grimnir.webthing.com (localhost [127.0.0.1])
	by grimnir.webthing.com (Postfix) with ESMTP id 160B02140
	for <modules-dev@httpd.apache.org>; Mon,  8 Jan 2007 18:01:52 +0000 (GMT)
Date: Mon, 8 Jan 2007 18:01:51 +0000
From: Nick Kew <nick@webthing.com>
To: modules-dev@httpd.apache.org
Subject: Re: Need help with ErrorDocument
Message-ID: <20070108180151.722a6bab@grimnir>
In-Reply-To: <dc2a864c0701080653h6b03e615xae1e51c7d18aba37@mail.gmail.com>
References: <dc2a864c0701080653h6b03e615xae1e51c7d18aba37@mail.gmail.com>
Organization: WebThing
X-Mailer: Sylpheed-Claws 2.5.0-rc3 (GTK+ 2.10.6; i486-pc-linux-gnu)
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Virus-Checked: Checked by ClamAV on apache.org

On Mon, 8 Jan 2007 20:23:26 +0530
"Vedavyas Raichur" <vedavyasraichur@gmail.com> wrote:

> Hi All,
>          I am new to apache & facing the following problem:
> 
> 1. A custom module that does client authentication on top of mod_ssl
> returns a FORBIDDEN when user is not authenticated.

That's probably not what you want.  FORBIDDEN means there's nothing
the client can do, which is not the case when the failure is one
of authentication.

>	 But when the
> server tries to fetch the custom ErrorDocument for this error it is
> FORBIDDEN again by same module above.

Yep.

> Is there any known solution to tackle this recursion.

The simple solution is for the ErrorDocument to be kept outside the
scope of what's restricted by your module.  That gives control to
system administrators.

-- 
Nick Kew

Application Development with Apache - the Apache Modules Book
http://www.apachetutor.org/