Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 10223 invoked from network); 5 Aug 2010 22:16:03 -0000 Received: from unknown (HELO mail.apache.org) (140.211.11.3) by 140.211.11.9 with SMTP; 5 Aug 2010 22:16:03 -0000 Received: (qmail 43145 invoked by uid 500); 5 Aug 2010 22:16:00 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 43103 invoked by uid 500); 5 Aug 2010 22:15:59 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 43095 invoked by uid 99); 5 Aug 2010 22:15:58 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 05 Aug 2010 22:15:58 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: local policy) Received: from [81.28.224.28] (HELO relay2.mail.vrmd.de) (81.28.224.28) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 05 Aug 2010 22:15:48 +0000 Received: from [92.198.21.83] (helo=[127.0.0.1]) by relay2.mail.vrmd.de with esmtpsa (TLSv1:AES256-SHA:256) (Exim 4.69) (envelope-from ) id 1Oh8il-0000gD-DJ for users@httpd.apache.org; Fri, 06 Aug 2010 00:15:27 +0200 Message-ID: <4C5B3803.60900@cnm.de> Date: Fri, 06 Aug 2010 00:15:31 +0200 From: Marten Lehmann User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.4) Gecko/20100608 Thunderbird/3.1 MIME-Version: 1.0 To: users@httpd.apache.org Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Relay-User: lehmann@variomedia.de X-Virus-Checked: Checked by ClamAV on apache.org Subject: [users@httpd] mod_auth: username is in REMOTE_USER, but where are the groups? Hello, I have a pretty standard auth setup: .htaccess: AuthType Basic AuthName "restricted" AuthUserFile /webs/.htpasswd AuthGroupFile /webs/.htgroups Require group readwrite .htpasswd: user1:..... user2:..... .htgroups: readwrite: user2 readonly: user1 eat-bananas: user2 Now when I access the page, the authorization works fine and the login I'm using to authenticate is stored in the env-variable REMOTE_USER by Apache. But where are the groups? Doesn't Apache store the groups attached to the user in an env-variable? This would help me a lot because my application needs to know which roles/groups have been assigned to the user. So even while for login it is only required to be of the group "readwrite" it would be nice to see for the application, that the user has additional groups like "eat-bananas". I hope I can rely on Apache for this, although it wouldn't be that hard to do it on my own. I just wouldn't like to update users and roles/groups in both, .htaccess files and source code of application. Kind regards Marten --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org