httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Joshua Slive <>
Subject Re: [users@httpd] login once for two virtual host
Date Fri, 28 Mar 2003 00:26:57 GMT

On Thu, 27 Mar 2003, Farid Hamjavar wrote:
> If user logs into may click on something that will
> land her on  .... And again, user is prompted
> with login dialog box of course.
> How can we avoid that? So users who login once to
> are not presented with the second login dialog box (for

This can't be done with http basic auth.  It violates the basic security
principles because it would allow one host to steal passwords used on
another host.

The only way to do this is to forget http basic auth and use some other
method of session tracking (cookies, URL-path, etc) that allows you to
pass a session between hosts.


The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message