httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "J. Bakshi" <joyd...@infoservices.in>
Subject [users@httpd] A critical .htaccess problem
Date Mon, 19 Jan 2009 07:12:10 GMT
Dear list,

I have a very critical problem with .htaccess. I have SVN which can be
accessed by https. here is the configuration for my svn

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~`
<Location /repos>
DAV svn
      AuthType Basic
      AuthName "Authorization Realm"
      AuthUserFile /home/SVN/PASSWD
      Require valid-user
      SVNParentPath /home/SVN
#### Limit write permission to list of valid users.
  <LimitExcept GET PROPFIND OPTIONS REPORT>
# # Require SSL connection for password protection.
      SSLRequireSSL

      AuthType Basic
      AuthName "Authorization Realm"
      AuthUserFile /home/SVN/PASSWD
      Require valid-user
  </LimitExcept>
</Location>
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

It disallow http:// access to the svn, which is my requirement.........

I also need to access the apache from outside of my office. Hence I have
made an arrangement by .htaccess in the htdocs folder so that it needs
authentication when accessed through internet but not with in LAN. here
is the .htaccess

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
AuthType Basic
AuthName "protected place"
AuthUserFile /home/SVN/PASSWD
Require valid-user
Order allow,deny
Allow from 192.168.1.0/24 ## allow from LAN
Satisfy any
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Now my purpose to protect the htdocs has been solved but on the other
hand, it is possible to access the svn through http:// through Internet !!!

If I disable the above .htaccess configuration then svn again starts
denying http:// as before..

How can I force svn to stick with https:// along with the above
.htaccess configuration ?
Please enlighten me.
Thanks

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message