httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Tom Evans <tevans...@googlemail.com>
Subject Re: [users@httpd] Problem with Files and Auth?
Date Mon, 16 May 2011 16:05:53 GMT
On Fri, May 13, 2011 at 3:57 PM, Knute Johnson <apache@knutejohnson.com> wrote:
> <VirtualHost *:80>
>        ServerAdmin webmaster@localhost
>
>        DocumentRoot /var/www
>        <Directory />
>                Options FollowSymLinks
>                AllowOverride None
>        </Directory>
>        <Directory /var/www/>
>                Options Indexes FollowSymLinks MultiViews
>                AllowOverride None
>                Order allow,deny
>                allow from all
>        # added for testing
>        # any files require group any membership
> <Files index.html>
>        AuthType Basic
>        AuthName "ARCLA Lookers"
>        AuthUserFile /usr/local/apache/passwords/arcla.pwd
>        AuthGroupFile /usr/local/apache/passwords/groups
>        Require group lookers players honchos
> </Files>
>        # this file requires group membership
>        <Files status-update.html>
>            AuthType Basic
>            AuthName "ARCLA Players"
>            AuthUserFile /usr/local/apache/passwords/arcla.pwd
>            AuthGroupFile /usr/local/apache/passwords/groups
>            Require group players honchos
>        </Files>
>        </Directory>
>
>        ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
>        <Directory "/usr/lib/cgi-bin">
>                AllowOverride None
>                Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
>                Order allow,deny
>                Allow from all
>        # added for testing
>        <Files printenv.pl>
>            AuthType Basic
>            AuthName "test"
>            AuthUserFile /usr/local/apache/passwords/arcla.pwd
>            AuthGroupFile /usr/local/apache/passwords/groups
>            Require group honchos
>        </Files>
>        </Directory>
>
>        ErrorLog ${APACHE_LOG_DIR}/error.log
>
>        # Possible values include: debug, info, notice, warn, error, crit,
>        # alert, emerg.
>        LogLevel warn
>
>        CustomLog ${APACHE_LOG_DIR}/access.log combined
>
>    Alias /doc/ "/usr/share/doc/"
>    <Directory "/usr/share/doc/">
>        Options Indexes MultiViews FollowSymLinks
>        AllowOverride None
>        Order deny,allow
>        Deny from all
>        Allow from 127.0.0.0/255.0.0.0 ::1/128
>    </Directory>
>
> </VirtualHost>
>
> Log when requesting http:/localhost/
>
> 127.0.0.1 - - [13/May/2011:07:53:54 -0700] "GET / HTTP/1.1" 401 618 "-"
> "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.17) Gecko/20110422
> Ubuntu/10.10 (maverick) Firefox/3.6.17"
> 127.0.0.1 - - [13/May/2011:07:53:54 -0700] "GET /favicon.ico HTTP/1.1" 404
> 500 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.17) Gecko/20110422
> Ubuntu/10.10 (maverick) Firefox/3.6.17"
> 127.0.0.1 - -
>
> Log when requesting http:/localhost/index.html
>
> 127.0.0.1 - - [13/May/2011:07:56:23 -0700] "GET /index.html HTTP/1.1" 401
> 665 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.17) Gecko/20110422
> Ubuntu/10.10 (maverick) Firefox/3.6.17"
> 127.0.0.1 - knute [13/May/2011:07:56:26 -0700] "GET /index.html HTTP/1.1"
> 200 484 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.17)
> Gecko/20110422 Ubuntu/10.10 (maverick) Firefox/3.6.17"
>
> Thanks,
>

Sorry, I think I misunderstood your problem. Let me re-state it, so
that we can agree on that :)

OP is trying to require basic authentication for /index.html. When
requested directly, it works as expected - UA is prompted for auth,
and Apache responds correctly. When requested as part of
DirectoryIndex lookup, UA does not prompt for auth, and simply returns
a 401 response.

What is confusing me is that the UA should prompt for auth on
receiving a 401 response, and then resubmit the request with basic
auth tokens. If you start with a completely clean browser (it can be
hard to clear basic auth credentials from a browser), do you have
different behaviour when requesting '/'?

Cheers

Tom

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message