httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Sean T Allen <s...@usaherbals.com>
Subject Re: [users@httpd] AuthConfig causing exsessive login requests
Date Thu, 30 Dec 2004 17:15:41 GMT
Yeah that has nothing to do with http being stateless...
once you are authenticated for a zone, your browser
is supposed to cache the credentials..

Dont have time to look into it now but if someone else
doesn't help you out first...

Paul Simon wrote:

>Same session, 20 objects on the page, 20 login requests; one after the
>other..  It was all working fine before I tried digest mode.  Then
>when I switched back it started this.
>
>
>On Thu, 30 Dec 2004 00:56:51 -0500, Sean T Allen <sean@usaherbals.com> wrote:
>  
>
>>Are you saying every new visit?
>>or during the same browser session?
>>
>>Shannon Eric Peevey wrote:
>>
>>    
>>
>>>Paul Simon wrote:
>>>
>>>      
>>>
>>>>Every time I go here it askes for authentication as if it is
>>>>authenticating every item it accesses.  I haven't been able to isolate
>>>>how to resolve this.
>>>>
>>>>Here is relevant cod:
>>>>
>>>><Directory "/var/www/html/ncc">
>>>>       AllowOverride AuthConfig
>>>>       AuthType Basic
>>>>       AuthName "Network Control Center"
>>>>       AuthUserFile /etc/httpd/passwords
>>>>       Require valid-user
>>>></Directory>
>>>>
>>>>        
>>>>
>>>This is the nature of HTTP as a stateless protocol.  It cannot
>>>remember if the user is authenticated between requests, and so must
>>>authenticate every time that a new object is accessed.
>>>
>>>Some modules, such as mod_auth_ldap have a caching feature that will
>>>remember the user, easing the load on your authication server, but I
>>>don't think that mod_auth, (the "built-in" Apache authentication
>>>module), offers that.
>>>
>>>You could look to a programming language alternative to offer caching
>>>for requests, such as with mod_perl, PHP, etc.
>>>
>>>good luck,
>>>
>>>      
>>>
>>---------------------------------------------------------------------
>>The official User-To-User support forum of the Apache HTTP Server Project.
>>See <URL:http://httpd.apache.org/userslist.html> for more info.
>>To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>>  "   from the digest: users-digest-unsubscribe@httpd.apache.org
>>For additional commands, e-mail: users-help@httpd.apache.org
>>
>>
>>
>>    
>>
>
>---------------------------------------------------------------------
>The official User-To-User support forum of the Apache HTTP Server Project.
>See <URL:http://httpd.apache.org/userslist.html> for more info.
>To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>   "   from the digest: users-digest-unsubscribe@httpd.apache.org
>For additional commands, e-mail: users-help@httpd.apache.org
>
>  
>


Mime
View raw message