httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Eric Covener <cove...@gmail.com>
Subject Re: [users@httpd] passwords with strange characters doesn't work?
Date Thu, 03 Sep 2009 12:11:30 GMT
On Thu, Sep 3, 2009 at 7:51 AM, Staffan Bergh<staffan.bergh@ki.se> wrote:
> Hi, I'm having a problem with authentication against our apache server.
>
> Setup:
>  apache 2.2.13 on windows XP sp3
>
> in httpd.conf
>
> <Location /test>
>  AuthName "Test"
>  AuthType Basic
>  AuthUserFile C:/test/passwd
>  Require valid-user
> </Location>
>
>
> In the passwd file, constructed with the apache htpasswd program on the
> command line, is a user 'test'. With password 'testtestö' (note the last
> character, it's a swedish o-with-umlaut) I get repeated queries for the
> username/password
>
> and in the error log
>
>  [Thu Sep 03 10:28:16 2009] [error] [client 127.0.0.1] user test:
> authentication failure for "/test": Password Mismatch

They have to match byte-for-byte, not just be the same characters in
their respective codepages.

In a terminal it's relatively easy, but guessing how different
browsers will read then decide what to put on the wire is hard.

LDAP is unique in that we always know the real passwords are UTF-8,
but we still can't do anything with a local codepage password
reliably. There is a controversial feature that tries to guess/convert
here: http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html#authldapcharsetconfig

It essentially guesses things like Accept-Language: Y implies the
browser sent the basic auth credentials in local codepage X.


-- 
Eric Covener
covener@gmail.com

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message