Return-Path: X-Original-To: apmail-httpd-users-archive@www.apache.org Delivered-To: apmail-httpd-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 6DBC57E18 for ; Thu, 28 Jul 2011 18:24:19 +0000 (UTC) Received: (qmail 26495 invoked by uid 500); 28 Jul 2011 18:24:16 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 26344 invoked by uid 500); 28 Jul 2011 18:24:15 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 26336 invoked by uid 99); 28 Jul 2011 18:24:15 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 28 Jul 2011 18:24:15 +0000 X-ASF-Spam-Status: No, hits=-0.7 required=5.0 tests=FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,SPF_PASS,T_TO_NO_BRKTS_FREEMAIL X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of joel.donahueis@gmail.com designates 74.125.82.43 as permitted sender) Received: from [74.125.82.43] (HELO mail-ww0-f43.google.com) (74.125.82.43) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 28 Jul 2011 18:24:08 +0000 Received: by wwi18 with SMTP id 18so2374067wwi.12 for ; Thu, 28 Jul 2011 11:23:47 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:date:message-id:subject:from:to:content-type; bh=72MjrvQau2yuU4SkWo2RKCtcPwTCBQ6BLJS+Sw+LQxA=; b=TgcOhE2F+SGi65w1yWy1uaBItIAwmzI4lewNBceHfQgXup3n1MPzTxDrdPnE2y5Yfg OsL/wChgzABKaJj5EUY3O2CVN0/lJwI8PdDAC0kJIZdX4IDpBIMcXQBTKRrUmwD55f/I yBrCFdY+PI2Tb2huWTCqVBOLZgKGemuvjLzig= MIME-Version: 1.0 Received: by 10.227.28.212 with SMTP id n20mr367382wbc.82.1311877427765; Thu, 28 Jul 2011 11:23:47 -0700 (PDT) Received: by 10.216.230.230 with HTTP; Thu, 28 Jul 2011 11:23:47 -0700 (PDT) Date: Thu, 28 Jul 2011 12:23:47 -0600 Message-ID: From: Joel Donahue To: users@httpd.apache.org Content-Type: text/plain; charset=ISO-8859-1 X-Virus-Checked: Checked by ClamAV on apache.org Subject: [users@httpd] Basic Auth with ProxyPass Through SSL I am setting up a reverse proxy to an internal webserver from an apache server with a public IP. I want to use Basic Auth and SSL on the public apache server which then forwards standard http, non-ssl traffic, to the internal webserver. Basic auth with ProxyPass works perfectly without using ssl but when using ssl the browser prompts me for the credentials but apache never accepts them as valid. Accessing the internal site with ssl and ProxyPass WITHOUT basic auth required works as well. This configuration works great without using ssl: ProxyPass / http://site.internal/ retry=0 ProxyPassReverse / http://site.internal/ ProxyPreserveHost On AuthType Basic AuthName "Restricted Area" AuthUserFile /usr/local/apache/access-file Require valid-user However this configuration does not work, however if I remove basic auth I can get through: ProxyPass / http://site.interal/ retry=0 ProxyPassReverse / http://site.internal/ ProxyPreserveHost On AuthType Basic AuthName "AFC Restricted Access" AuthUserFile /user/local/apache/access-file Require valid-user What am I missing? --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org