Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 271 invoked from network); 21 Apr 2004 04:16:00 -0000 Received: from daedalus.apache.org (HELO mail.apache.org) (208.185.179.12) by minotaur-2.apache.org with SMTP; 21 Apr 2004 04:16:00 -0000 Received: (qmail 97562 invoked by uid 500); 21 Apr 2004 04:15:25 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 97542 invoked by uid 500); 21 Apr 2004 04:15:25 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: list-post: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 97514 invoked from network); 21 Apr 2004 04:15:24 -0000 Received: from unknown (HELO twonetom18.sge.net) (152.91.2.18) by daedalus.apache.org with SMTP; 21 Apr 2004 04:15:24 -0000 Received: from twonetvs10.sge.net (twonetvs-om [152.91.2.17]) by twonetom18.sge.net (Postfix) with ESMTP id 8060CAC88 for ; Wed, 21 Apr 2004 14:15:33 +1000 (EST) Received: from twonetvs10.sge.net (localhost [127.0.0.1]) by localhost (Postfix) with ESMTP id 92C0F963A8 for ; Wed, 21 Apr 2004 14:15:33 +1000 (EST) Received: from twonetim3.sge.net (twonetim-vs.sge.net [152.91.2.9]) by twonetvs10.sge.net (Postfix) with ESMTP id 85D9E96391 for ; Wed, 21 Apr 2004 14:15:33 +1000 (EST) Received: from dogbolter.sge.net (dogbolter.sge.net [152.91.9.7]) by twonetim3.sge.net (Postfix) with SMTP id 4390FA9C3 for ; Wed, 21 Apr 2004 14:15:33 +1000 (EST) Received: by dogbolter.sge.net (Postfix, from userid 5) id 275D827687; Wed, 21 Apr 2004 14:15:33 +1000 (EST) Received: from nodnsquery(172.16.151.1) by dogbolter.sge.net via csmap (V6.0) id srcAAAukaian; Wed, 21 Apr 04 14:15:33 +1000 Received: from top01dhb1.facs.gov.au (unknown [10.18.20.56]) by bixbyite.sge.net (Postfix) with ESMTP id BD69AA6403 for ; Wed, 21 Apr 2004 14:15:32 +1000 (EST) To: users@httpd.apache.org X-Mailer: Lotus Notes Release 5.0.8 June 18, 2001 Message-ID: From: rodney.malbon@facs.gov.au Date: Wed, 21 Apr 2004 14:15:31 +1000 X-MIMETrack: Serialize by Router on TOP01DHB1/Server/FaCS(Release 5.0.11 |July 24, 2002) at 21/04/2004 14:15:32 MIME-Version: 1.0 Content-type: text/plain; charset=us-ascii X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N Subject: [users@httpd] Partial display of images when authenticating to LDAP Domino Server X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N I am using RedHat ES version 3 and Httpd 2.0.46 using mod_auth_ldap.so to users authenticate with a Domino LDAP server. The authentication works for the text parts of the web pages and occasionally for some of the images on the web page. However some of the images are not displayed and this varies when refreshing the web page that is different images may be displayed or not displayed. For each of the images that are not display the user is asked to authenticate again. The logs show that the user authentication has failed with invalid credentials. If I restart httpd and right click on the undisplayed images and click show picture (browser is IE 5.5) then image will be displayed without further requests for authentication. IE caches the user authentication details and just resends them for each of the images. I am using the require valid-user directive in the above scenario. When I use the require group directive the authentication fails straight away for the whole web page. If the authentication directives are removed the whole web pages are display correctly. I have look at the documents at the Apache web site and search the web but I am unable to find anything that help with the problem. Below is an extract from the httpd.conf: LogLevel debug ServerAdmin support@zz.gov.tv ServerName xx.zz.gov.tv SSLEngine On SSLProtocol All SSLCipherSuite ALL:!ADH:!EXPORTS56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2: +EXP:+eNULL SetEnvIf Request_URI \.gif image-request SetEnvIf Request_URI \.jpg image-request SetEnvIf Request_URI \.png image-request SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key ProxyBadHeader Ignore ProxyPreserveHost off ProxyPass / http://eee.fff.ggg.hhh/ ProxyPassReverse / http://eee.fff.ggg.hhh/ SetOutputFilter INCLUDES AuthName "Test-Net Clients Only" AuthType Basic AuthLDAPEnabled on AuthLDAPBindDN "cn=reverse_proxy,o=facs-ldap" AuthLDAPBindPassword apaTchysolution AuthLDAPURL "ldap://kkk.lll.mmm.nnn.:389/o=test-ldap?uid" AuthLDAPAuthoritative on AuthLDAPGroupAttributeIsDN off AuthLDAPGroupAttribute member AuthLDAPGroupAttribute member require valid-user #require group CN=webgroup,o=test-ldap ErrorLog logs/xrod-error_log CustomLog logs/xrod-access_log combined env=!image-request Thanks for your help with this problem, Rodney Malbon --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org