Return-Path: 
 <users-return-39128-apmail-httpd-users-archive=httpd.apache.org@httpd.apache.org>
Delivered-To: apmail-httpd-users-archive@www.apache.org
Received: (qmail 33863 invoked from network); 15 Mar 2004 21:21:56 -0000
Received: from daedalus.apache.org (HELO mail.apache.org) (208.185.179.12)
  by minotaur-2.apache.org with SMTP; 15 Mar 2004 21:21:56 -0000
Received: (qmail 67770 invoked by uid 500); 15 Mar 2004 21:21:30 -0000
Delivered-To: apmail-httpd-users-archive@httpd.apache.org
Received: (qmail 67754 invoked by uid 500); 15 Mar 2004 21:21:30 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
list-post: <mailto:users@httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 67733 invoked from network); 15 Mar 2004 21:21:30 -0000
Received: from unknown (HELO Mail.local.americanroamer.com) (216.84.21.34)
  by daedalus.apache.org with SMTP; 15 Mar 2004 21:21:30 -0000
Received: from americanroamer.com ([216.84.21.34])
          by Mail.local.americanroamer.com (Post.Office MTA v3.5.3
          release 720 ID# 1001-65915U100L10S0V35) with ESMTP id com
          for <users@httpd.apache.org>; Mon, 15 Mar 2004 15:17:07 -0600
Message-ID: <40561E5A.2070501@americanroamer.com>
Date: Mon, 15 Mar 2004 15:21:31 -0600
From: Jim Strickland <jims@americanroamer.com>
User-Agent: Mozilla Thunderbird 0.5+ (Macintosh/20040217)
X-Accept-Language: en-us, en
MIME-Version: 1.0
To: users@httpd.apache.org
References: <40561051.2010703@americanroamer.com>
 <Pine.WNT.4.58.0403151523300.1424@Poste3947.hec.ca>
In-Reply-To: <Pine.WNT.4.58.0403151523300.1424@Poste3947.hec.ca>
Content-Type: multipart/alternative;
 boundary="------------080501030209050401010307"
X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N
Subject: Re: [users@httpd] Password protected folder within another password
 protected folder
X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N

--------------080501030209050401010307
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit

Sorry about the paragraph. I was just typing as I was thinking and 
well...now you know how I think.

Below is a copy of how I have this particular client section setup, with 
names changed to protect the guilty. Unfortunately, even though I have 
the private folder requiring a certain user, the regular client login is 
still accessing it. HELLLP!!!

<Directory "/var/www/html/abcdefg.com/client/03">
AuthName "Joes Nails"
AuthType Basic
require valid-user
AuthUserFile /clients/ClientPasswords/03/passwords
</Directory>
<Directory "/var/www/html/abcdefg.com/client/03/Proofing Area/John Doe">
AuthName "Joes Nails"
AuthType Basic
require user johndoe
AuthUserFile /clients/ClientPasswords/03/passwords
</Directory>

Joshua Slive wrote:

>On Mon, 15 Mar 2004, Jim Strickland wrote:
>  
>
>>I'm guessing that there is an important step I am missing.
>>Could someone please identify what that step is?
>>    
>>
>
>I think the first step you are missing is paragraphs in your question.
>Wheh.
>
>Anyway, your main problem seems to be that you are mixing up apache
>permissions and unix permissions.  These two are almost orthogonal.  As
>far as apache is concerned, the only thing that is important is that the
>User/Group specified in httpd.conf can read ALL the files that apache
>needs to serve.  The rest of the access configuration should be done
>entirely at the httpd.conf/.htaccess level, not at the file permission
>level.  So, for example, you can make all your files world-readable and
>then do
>
><Directory /path/to/private/>
>AuthName private
>AuthUserFile ...
>AuthType Basic
>require user company1 person1
></Directory>
>
><Directory /path/to/private/individual>
>AuthName private
>AuthUserFile ...
>AuthType Basic
>require user person1
></Directory>
>
>Joshua.
>
>---------------------------------------------------------------------
>The official User-To-User support forum of the Apache HTTP Server Project.
>See <URL:http://httpd.apache.org/userslist.html> for more info.
>To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>   "   from the digest: users-digest-unsubscribe@httpd.apache.org
>For additional commands, e-mail: users-help@httpd.apache.org
>
>
>  
>

-- 
James Strickland - MCP
IT Manager
American Roamer
901-377-8585
http://www.americanroamer.com


--------------080501030209050401010307
Content-Type: text/html; charset=us-ascii
Content-Transfer-Encoding: 7bit

<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
  <meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
  <title></title>
</head>
<body>
Sorry about the paragraph. I was just typing as I was thinking and
well...now you know how I think.<br>
<br>
Below is a copy of how I have this particular client section setup,
with names changed to protect the guilty. Unfortunately, even though I
have the private folder requiring a certain user, the regular client
login is still accessing it. HELLLP!!!<br>
<br>
&lt;Directory "/var/www/html/abcdefg.com/client/03"&gt;<br>
AuthName "Joes Nails"<br>
AuthType Basic<br>
require valid-user<br>
AuthUserFile /clients/ClientPasswords/03/passwords<br>
&lt;/Directory&gt;<br>
&lt;Directory "/var/www/html/abcdefg.com/client/03/Proofing Area/John
Doe"&gt;<br>
AuthName "Joes Nails"<br>
AuthType Basic<br>
require user johndoe<br>
AuthUserFile /clients/ClientPasswords/03/passwords<br>
&lt;/Directory&gt;<br>
<br>
Joshua Slive wrote:<br>
<blockquote cite="midPine.WNT.4.58.0403151523300.1424@Poste3947.hec.ca"
 type="cite">
  <pre wrap="">On Mon, 15 Mar 2004, Jim Strickland wrote:
  </pre>
  <blockquote type="cite">
    <pre wrap="">I'm guessing that there is an important step I am missing.
Could someone please identify what that step is?
    </pre>
  </blockquote>
  <pre wrap=""><!---->
I think the first step you are missing is paragraphs in your question.
Wheh.

Anyway, your main problem seems to be that you are mixing up apache
permissions and unix permissions.  These two are almost orthogonal.  As
far as apache is concerned, the only thing that is important is that the
User/Group specified in httpd.conf can read ALL the files that apache
needs to serve.  The rest of the access configuration should be done
entirely at the httpd.conf/.htaccess level, not at the file permission
level.  So, for example, you can make all your files world-readable and
then do

&lt;Directory /path/to/private/&gt;
AuthName private
AuthUserFile ...
AuthType Basic
require user company1 person1
&lt;/Directory&gt;

&lt;Directory /path/to/private/individual&gt;
AuthName private
AuthUserFile ...
AuthType Basic
require user person1
&lt;/Directory&gt;

Joshua.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <a class="moz-txt-link-rfc1738" href="http://httpd.apache.org/userslist.html">&lt;URL:http://httpd.apache.org/userslist.html&gt;</a> for more info.
To unsubscribe, e-mail: <a class="moz-txt-link-abbreviated" href="mailto:users-unsubscribe@httpd.apache.org">users-unsubscribe@httpd.apache.org</a>
   "   from the digest: <a class="moz-txt-link-abbreviated" href="mailto:users-digest-unsubscribe@httpd.apache.org">users-digest-unsubscribe@httpd.apache.org</a>
For additional commands, e-mail: <a class="moz-txt-link-abbreviated" href="mailto:users-help@httpd.apache.org">users-help@httpd.apache.org</a>


  </pre>
</blockquote>
<br>
<pre class="moz-signature" cols="72">-- 
James Strickland - MCP
IT Manager
American Roamer
901-377-8585
<a class="moz-txt-link-freetext" href="http://www.americanroamer.com">http://www.americanroamer.com</a></pre>
</body>
</html>

--------------080501030209050401010307--