httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Tom Evans <tevans...@googlemail.com>
Subject Re: [users@httpd] redirect occurs after authorization !!!
Date Tue, 27 Oct 2009 17:42:52 GMT
On Tue, 2009-10-27 at 12:07 +0530, J. Bakshi wrote:
> Hello list,
> 
> I have finally able to redirect the viewvc ( svn viewer ) to https. here
> is the configuration
> 
> ``````````````````````````````
> ScriptAlias /test  /usr/lib/cgi-bin/viewvc.cgi
> 
> <Location /test>
> RewriteEngine   on
> RewriteCond %{HTTPS} off
> RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI}
> 
> AuthType Basic
> AuthName "requires a password"
> AuthUserFile /home/svn/PASSWD
> Require valid-user
> </Location>
> ```````````````````````````````````````````
> 
> This is working fine for both internet and intranet.  But  I have found
> it first check the authorization through http connection and after
> getting the right password it redirects  to https version.  Can I
> redirect  to http before authentication  ?
> Please let me know.
> Thanks
> 

I think I'm missing something. If you aren't supposed to access this
resource, except through SSL and after authentication, then surely this
is trivial. 
Simply set up 2 vhosts, one SSL, one non-SSL. In the non-SSL vhost,
redirect to the SSL vhost and don't have any authentication. In the SSL
vhost, you can have your script and AAA setup.

Cheers

Tom


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message