Return-Path: 
 <users-return-80799-apmail-httpd-users-archive=httpd.apache.org@httpd.apache.org>
Delivered-To: apmail-httpd-users-archive@www.apache.org
Received: (qmail 17301 invoked from network); 14 May 2008 12:44:23 -0000
Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2)
  by minotaur.apache.org with SMTP; 14 May 2008 12:44:23 -0000
Received: (qmail 92476 invoked by uid 500); 14 May 2008 12:44:13 -0000
Delivered-To: apmail-httpd-users-archive@httpd.apache.org
Received: (qmail 92467 invoked by uid 500); 14 May 2008 12:44:13 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
List-Post: <mailto:users@httpd.apache.org>
List-Id: <users.httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 92456 invoked by uid 99); 14 May 2008 12:44:12 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 14 May 2008 05:44:12 -0700
X-ASF-Spam-Status: No, hits=2.0 required=10.0
	tests=HTML_MESSAGE,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: local policy)
Received: from [209.191.90.251] (HELO web37308.mail.mud.yahoo.com)
 (209.191.90.251)
    by apache.org (qpsmtpd/0.29) with SMTP; Wed, 14 May 2008 12:43:26 +0000
Received: (qmail 54545 invoked by uid 60001); 14 May 2008 12:43:40 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
  s=s1024; d=yahoo.com;
  h=X-YMail-OSG:Received:Date:From:Reply-To:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID;
  b=HjS42anFmMLDuTt1dczSybQzP4JZHm0LKkg70VLmc+QwPBPIhY1JW4hP+IrcNeQmej39D1QyZVg0SxklAoFWm4JZSuNUpO5If+ETVkcw0ft9qlCuV00yNpKqvMsDC20B+VpDN9Djzqd5mEDsmcp5Biuvbv7KbB+P2wvJ54uiuIY=;
X-YMail-OSG: 
 BEq.75sVM1mge95W9bmekrYC8lfBvkdIDGk1LSqlNhncV.OSJvNm8w9eF5yQf7tMXw--
Received: from [62.23.212.60] by web37308.mail.mud.yahoo.com via HTTP;
 Wed, 14 May 2008 05:43:40 PDT
Date: Wed, 14 May 2008 05:43:40 -0700 (PDT)
From: Caius <caiuspolgar@yahoo.com>
Reply-To: CaiusPolgar@yahoo.com
To: users@httpd.apache.org
In-Reply-To: 
 <1396860689-1210702280-cardhu_decombobulator_blackberry.rim.net-1196606601-@bxe005.bisx.produk.on.blackberry>
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="0-813396028-1210769020=:54354"
Content-Transfer-Encoding: 8bit
Message-ID: <771139.54354.qm@web37308.mail.mud.yahoo.com>
X-Virus-Checked: Checked by ClamAV on apache.org
Subject: Re: [users@httpd] exclude a subdirectory from authentication request

--0-813396028-1210769020=:54354
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit

Hello Matt,
i did what you told me and still nothing ... maybe i didnt put the right condition in the directory stanza 

<Directory />
   AuthType Basic
   AuthName "LDAP auth realm"
   AuthBasicProvider ldap
   AuthLDAPURL ldap://localhost:389/ou=People,dc=mybox,dc=com?uid?one?(objectClass=*)
   AuthLDAPBindDN cn=proxyagent,ou=profile,dc=mybox,dc=com
   AuthLDAPBindPassword proxy
   AuthzLDAPAuthoritative off
   require valid-user
   Options FollowSymLinks
   AllowOverride All
</Directory>

<Directory /users/public>
Order Allow,Deny
 Satisfy Any
 Allow from all 
Options Indexes IncludesNoExec
</Directory>

im pretty disappointed now ... im asking myself if what i want really works? 
has anyone tried it? and worked on there box? 
cause if thats the case then all i need to do is some troubleshooting :D
but if no one seen it working as i want it to work then im in big mess :(

thanks again for any feedback 

matt.farey@gmail.com wrote: Use another directory stanza in your main httpd.conf which references the subdir you want unprotecting.
Perhaps .htaccess files are off - and with more than 100 directories, you should leave them off, especially if some are nested.


Sent from my BlackBerry� wireless device

-----Original Message-----
From: Caius 

Date: Tue, 13 May 2008 08:20:55 
To:users@httpd.apache.org
Subject: [users@httpd] exclude a subdirectory from authentication request

im running an apache 2.2.4...
Server version: Apache/2.2.4 (Unix)
Server built:   Jul 30 2007 17:04:39

Below is my generic directory configuration
i need some help as im a little lost

i have put something like this in my httpd.conf file to protect all my web directory's with user/pass


AuthType Basic
AuthName "Secure BOX"
AuthzLDAPAuthoritative On
AuthLDAPURL "ldap://localhost:389/ou=People,dc=testbox,dc=com"
Require valid-user
AllowOverride All


And as you know, subsequently all the directories below it are protected as well.
I need to keep this logic intact but UN-password protect a subdirectory "/users/public", so i would like to exclude then from authentication mechanism

I have read that I could just put another .htaccess file in "/users/public" to override the password protection from the httpd.conf file. 

#.htaccess
Order Allow,Deny
 Satisfy Any
 Allow from all 

I tried this but it didnt work, meaning that i was still requested for a user/pass 

Is there some rules/if statement that i can put? or another method that could work the way i want it?

PS: i have more then 100 directory's and i dont want to put separately in each an authentication block and only in the directory/subdirectory where i want free access no authentication block 

Best Regards
Caius

Toate cele bune,
Caius Polgar

#################################################
#Deosebim doua tipuri de pedepse. Cu viata si cu moartea#
####################################[V. Butulescu]#
 


Toate cele bune,
Caius Polgar

#################################################
#Deosebim doua tipuri de pedepse. Cu viata si cu moartea#
####################################[V. Butulescu]#
       
--0-813396028-1210769020=:54354
Content-Type: text/html; charset=iso-8859-1
Content-Transfer-Encoding: 8bit

Hello Matt,<br>i did what you told me and still nothing ... maybe i didnt put the right condition in the directory stanza <br><br>&lt;Directory /&gt;<br>&nbsp;&nbsp; AuthType Basic<br>&nbsp;&nbsp; AuthName "LDAP auth realm"<br>&nbsp;&nbsp; AuthBasicProvider ldap<br>&nbsp;&nbsp; AuthLDAPURL ldap://localhost:389/ou=People,dc=mybox,dc=com?uid?one?(objectClass=*)<br>&nbsp;&nbsp; AuthLDAPBindDN cn=proxyagent,ou=profile,dc=mybox,dc=com<br>&nbsp;&nbsp; AuthLDAPBindPassword proxy<br>&nbsp;&nbsp; AuthzLDAPAuthoritative off<br>&nbsp;&nbsp; require valid-user<br>&nbsp;&nbsp; Options FollowSymLinks<br>&nbsp;&nbsp; AllowOverride All<br>&lt;/Directory&gt;<br><br>&lt;Directory /users/public&gt;<br>Order Allow,Deny<br> Satisfy Any<br> Allow from all <br>Options Indexes IncludesNoExec<br>&lt;/Directory&gt;<br><br>im pretty disappointed now ... im asking myself if what i want really works? <br>has anyone tried it? and worked on there box? <br>cause if thats the case then all i need to do is
 some troubleshooting :D<br>but if no one seen it working as i want it to work then im in big mess :(<br><br>thanks again for any feedback <br><br><b><i>matt.farey@gmail.com</i></b> wrote:<blockquote class="replbq" style="border-left: 2px solid rgb(16, 16, 255); margin-left: 5px; padding-left: 5px;"> Use another directory stanza in your main httpd.conf which references the subdir you want unprotecting.<br>Perhaps .htaccess files are off - and with more than 100 directories, you should leave them off, especially if some are nested.<br><br><br>Sent from my BlackBerry� wireless device<br><br>-----Original Message-----<br>From: Caius <caiuspolgar@yahoo.com><br><br>Date: Tue, 13 May 2008 08:20:55 <br>To:users@httpd.apache.org<br>Subject: [users@httpd] exclude a subdirectory from authentication request<br><br>im running an apache 2.2.4...<br>Server version: Apache/2.2.4 (Unix)<br>Server built:&nbsp;&nbsp; Jul 30 2007 17:04:39<br><br>Below is my generic directory
 configuration<br>i need some help as im a little lost<br><br>i have put something like this in my httpd.conf file to protect all my web directory's with user/pass<br><br><Directory><br>AuthType Basic<br>AuthName "Secure BOX"<br>AuthzLDAPAuthoritative On<br>AuthLDAPURL "ldap://localhost:389/ou=People,dc=testbox,dc=com"<br>Require valid-user<br>AllowOverride All<br></Directory><br><br>And as you know, subsequently all the directories below it are protected as well.<br>I need to keep this logic intact but UN-password protect a subdirectory "/users/public", so i would like to exclude then from authentication mechanism<br><br>I have read that I could just put another .htaccess file in "/users/public" to override the password protection from the httpd.conf file. <br><br>#.htaccess<br>Order Allow,Deny<br> Satisfy Any<br> Allow from all <br><br>I tried this but it didnt work, meaning that i was still requested for a user/pass <br><br>Is there some rules/if statement that i can
 put? or another method that could work the way i want it?<br><br>PS: i have more then 100 directory's and i dont want to put separately in each an authentication block and only in the directory/subdirectory where i want free access no authentication block <br><br>Best Regards<br>Caius<br><br>Toate cele bune,<br>Caius Polgar<br><br>#################################################<br>#Deosebim doua tipuri de pedepse. Cu viata si cu moartea#<br>####################################[V. Butulescu]#<br> </caiuspolgar@yahoo.com></blockquote><br><BR><BR>Toate cele bune,<br>Caius Polgar<br><br>#################################################<br>#Deosebim doua tipuri de pedepse. Cu viata si cu moartea#<br>####################################[V. Butulescu]#<p>&#32;



      
--0-813396028-1210769020=:54354--