Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 12681 invoked from network); 23 Sep 2009 09:27:40 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 23 Sep 2009 09:27:40 -0000 Received: (qmail 77918 invoked by uid 500); 23 Sep 2009 09:27:37 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 77843 invoked by uid 500); 23 Sep 2009 09:27:37 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 77834 invoked by uid 99); 23 Sep 2009 09:27:37 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 23 Sep 2009 09:27:37 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: local policy) Received: from [131.211.143.224] (HELO smtp3.service.phil.uu.nl) (131.211.143.224) by apache.org (qpsmtpd/0.29) with ESMTP; Wed, 23 Sep 2009 09:27:27 +0000 Received: from localhost (localhost [127.0.0.1]) by localhost (Postfix) with ESMTP id 4B4C8A147 for ; Wed, 23 Sep 2009 11:27:04 +0200 (CEST) X-Virus-Scanned: amavisd-new at phil.uu.nl Received: from smtp3.service.phil.uu.nl ([127.0.0.1]) by localhost (smtp3.service.phil.uu.nl [127.0.0.1]) (amavisd-new, port 10024) with LMTP id lXp+ZeelQ6jV for ; Wed, 23 Sep 2009 11:27:04 +0200 (CEST) Received: from localhost (mtp-imac.admin.phil.uu.nl [131.211.140.52]) (using SSLv3 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) (Authenticated sender: mtp) by smtp3.service.phil.uu.nl (Postfix) with ESMTP id 1F918A142 for ; Wed, 23 Sep 2009 11:27:04 +0200 (CEST) Date: Wed, 23 Sep 2009 11:27:04 +0200 From: Maarten te Paske To: users@httpd.apache.org Message-ID: <20090923092704.GC299@mtp-imac.admin.phil.uu.nl> References: <20090922145247.GC971@mtp-imac.admin.phil.uu.nl> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="DIOMP1UsTsWJauNi" Content-Disposition: inline In-Reply-To: <20090922145247.GC971@mtp-imac.admin.phil.uu.nl> User-Agent: Mutt/1.5.20 (2009-06-14) X-Virus-Checked: Checked by ClamAV on apache.org Subject: Re: [users@httpd] Authentication for LDAP user or htgroup member --DIOMP1UsTsWJauNi Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Sep 22, 2009 at 04:52:47PM +0200, Maarten te Paske wrote: > Both authentication models work as I use them as the only method, but > when I add two methods and "Satisfy Any" I'm not asked for authentication. I have been struggling with this issue some more, and finally came up with a working configuration: = =20 AuthName "LDAP authentication" AuthType Basic AuthBasicProvider ldap file AuthGroupFile /tmp/htgroup AuthzGroupFileAuthoritative on AuthLDAPURL ldaps://xxxx.xx.xx/o=3Duu?uuShortId Require ldap-attribute foo=3D"bar" AuthzLDAPAuthoritative off Order Deny,Allow Deny From all Require group wOOt Require valid-user Satisfy Any My apologies for causing any inconvenience by posting to this list and fixing the problem myself after all. --=20 Met vriendelijke groet, Maarten te Paske Systeemgroep Wijsbegeerte --DIOMP1UsTsWJauNi Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (Darwin) iEYEARECAAYFAkq56egACgkQ3NhYEThO7Y0fXQCfc+EznfsJ0gWt7fKtbhvPoZm4 xa8AniIlhR//mY8zh+0nNG7+ByLOBCMl =+aUv -----END PGP SIGNATURE----- --DIOMP1UsTsWJauNi--