httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Martin Knoblauch <spamt...@knobisoft.de>
Subject Re: [users@httpd] How to prevent AuthBasic login pop-up after first failed login attempt
Date Thu, 13 Oct 2005 15:40:31 GMT


--- Joshua Slive <jslive@gmail.com> wrote:

> On 10/13/05, Martin Knoblauch <spamtrap@knobisoft.de> wrote:
> 
> >  Sorry, but does not help. On startup httpd tells me that
> > ErrorDocuments cannot be URL's (notice level) and the behaviour
> stays
> > the same.
> 
> Looking at the code, it seems to throw out the errordocument, rather
> than just warning about it.  An alternative would be to point the

 correct. The appearance of the error page changed slightly to some
kind of "default" document instead of the localized version I had in
httpd.conf.

> ErrorDocument 401 at a CGI script which could then change the status
> code.  As you've noticed, it is the 401 response code that causes the
> popup, so anything you can do to get of that will fix the problem.
> 

 hmm. Not sure that this will help. The 401 ErrorDocument is only
displayed, when I finally press the "cancel" button on the login
pop-up.  I can do an infinite number of failed logins before without
getting the ErrorDocument displayed.

 The "AuthAuthoritative Off" thingy is actually promising. What I now
need to understand is how I establish a "lower level modules" that just
replys with 403 without any further interaction.

Thanks
Martin
PS: List added back to CC.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message