httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Tom Holmes Jr." <...@tomholmes.net>
Subject Re: [users@httpd] No login challenge
Date Thu, 01 Jan 2004 18:17:29 GMT
I am having the same problem as you ... I don't get the login challenge
either.

I have tried a thousand different combinations in the last three days and I
don't even get the page back that you do.

I hope you can get it working!

----- Original Message ----- 
From: "Ted" <ted@KI5U.net>
To: <users@httpd.apache.org>
Sent: Thursday, January 01, 2004 12:54 PM
Subject: Re: [users@httpd] No login challenge


> Here's the info...
>
> The problem is that I'm not getting a login challenge when testing from a
> W2K system with IE6 to the Linux server, after turning on security.
Apache
> version 2.0.40, Red Hat 8 Linux kernel 2.4.20-27.
>
> I set the directory up as below:  No login challenge.
> <Directory "/var/www/cgi-bin">
> AllowOverride All
> AllowOverride AuthConfig
> AuthName "Restricted Site"
> AuthType Basic
> AuthUserFile /var/www/SitePsw/password
> require user Ted
> Options ExecCGI Includes FollowSymLinks Indexes MultiViews
> AddHandler cgi-script cgi pl
> Allow from all
> Order allow,deny
> </Directory>
>
> Then I tried the below using both .htaccess and file specs. Still no login
> challenge..
> <.htaccess contents>
> AuthType Basic
> AuthName "Restricted Site"
> AuthUserFile /var/www/SitePsw/password
> Require user Ted
>
> <Apache.conf contents>
> <Directory "/var/www/cgi-bin">
> AllowOverride AuthConfig
> Options ExecCGI Includes FollowSymLinks Indexes MultiViews
> AddHandler cgi-script cgi pl
> Order allow,deny
> </Directory>
>
> When I look at the page returned using "view source", here's what I see.
>
> <title>401 Authorization Required</title>
> </head><body>
> <h1>Authorization Required</h1>
> <p>This server could not verify that you
> are authorized to access the document
> requested.  Either you supplied the wrong
> credentials (e.g., bad password), or your
> browser doesn't understand how to supply
> the credentials required.</p>
> <hr />
> <address>Apache/2.0.40 Server at 66.12.9.126 Port 26788</address>
> </body></html>
>
<!--//--><script>if(document.layers){document.captureEvents(Event.MOUSEUP);}
document.onmouseup=PrxOMUp;</script>
>
> So, duh.  It appears that I'm getting the expected response, but due to
> it's form, the IE browser isn't producing the login box.  One might expect
> the Apache to return something more like:
> HTTP/1.1 401 Authorization Required
> Date: Wed, 31 Dec 2003 08:20:37 GMT
> Server: Apache/2.0.40 (Unix) (Red-Hat/Linux) PHP/4.3.4.
> X-Powered-By: PHP/4.3.4
> WWW-authenticate: basic realm="Restricted Site"
> Keep-Alive: timeout=15, max=100
> Connection: Keep-Alive
> Transfer-Encoding: chunked
> Content-Type: text/html
>
> There are no error messages in either apache_logs or connect_logs.
>
> Hopefully, this additional data will be helpful.  Thanks, Ted
>
> At 02:33 PM 12/30/2003 +0100, you wrote:
> >Ted wrote:
> > > When I turn on security by adding Authentication per Apache 2.0
> > > documentation, I cannot get Apache to issue a login challenge window.
> >
> >When you issue a request for a protected resource, is it delivered
(without
> >challenge) or do you get an error message? Is there anything related in
the
> >error log?
> >
> > > Help would be appreciated.
> >
> >It is not very easy to do without knowing anything except "doesn't work";
> >it's like "my car doesn't work, tell me what's wrong with it" (without
> >hands-on access!).
> >
> >Please give some more bits of information:
> >- What Apache and OS version
> >- Exactly what you tried to do (configurationwise)
> >- Exactly what you expected to happen
> >- Exactly what actually did happen. Also excerpts from logs etc.
> >- Anything that might be "odd" with your config, such as rewrite rules,
> >    aliases, redirects etc.
> >
> >Regards,
> >Robert Andersson
> >
> >
> >---------------------------------------------------------------------
> >The official User-To-User support forum of the Apache HTTP Server
Project.
> >See <URL:http://httpd.apache.org/userslist.html> for more info.
> >To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> >For additional commands, e-mail: users-help@httpd.apache.org
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message