Return-Path: 
 <users-return-102607-apmail-httpd-users-archive=httpd.apache.org@httpd.apache.org>
X-Original-To: apmail-httpd-users-archive@www.apache.org
Delivered-To: apmail-httpd-users-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 7A8A09D7C
	for <apmail-httpd-users-archive@www.apache.org>;
 Mon, 20 Feb 2012 16:22:52 +0000 (UTC)
Received: (qmail 65204 invoked by uid 500); 20 Feb 2012 16:22:49 -0000
Delivered-To: apmail-httpd-users-archive@httpd.apache.org
Received: (qmail 65178 invoked by uid 500); 20 Feb 2012 16:22:49 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
List-Post: <mailto:users@httpd.apache.org>
List-Id: <users.httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 65170 invoked by uid 99); 20 Feb 2012 16:22:49 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 20 Feb 2012 16:22:49 +0000
X-ASF-Spam-Status: No, hits=-0.7 required=5.0
	tests=RCVD_IN_DNSWL_LOW,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (nike.apache.org: domain of raubvogel@gmail.com designates
 209.85.216.52 as permitted sender)
Received: from [209.85.216.52] (HELO mail-qw0-f52.google.com) (209.85.216.52)
    by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 20 Feb 2012 16:22:41 +0000
Received: by qafi31 with SMTP id i31so7889109qaf.18
        for <users@httpd.apache.org>; Mon, 20 Feb 2012 08:22:21 -0800 (PST)
Received-SPF: pass (google.com: domain of raubvogel@gmail.com designates
 10.229.135.146 as permitted sender) client-ip=10.229.135.146;
Authentication-Results: mr.google.com;
 spf=pass (google.com: domain of raubvogel@gmail.com designates 10.229.135.146
 as permitted sender) smtp.mail=raubvogel@gmail.com;
 dkim=pass header.i=raubvogel@gmail.com
Received: from mr.google.com ([10.229.135.146])
        by 10.229.135.146 with SMTP id n18mr16232792qct.72.1329754941129
 (num_hops = 1);
        Mon, 20 Feb 2012 08:22:21 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=gamma;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :content-type:content-transfer-encoding;
        bh=HOOZW+RSVwZXUUPvdxW9uKfRv8otVwMZJy39H+DFfxE=;
        b=WmhFWEncds9PRXFd3rT2fQNiy0npWu+rnZH/A5oXM78k84xuGoLGiStc7ERY8WQuea
         r7WmwA8DB/G2A2k+zxOT6eMH4OLMeQLdqpU1ba3yYQDmIMqKYGEGCpDPKZJ1NBjk6caf
         M0SErbsUtiRHNzDH5BoPIuN7jgOoJhqL3x+Xo=
MIME-Version: 1.0
Received: by 10.229.135.146 with SMTP id n18mr13812097qct.72.1329754940913;
 Mon, 20 Feb 2012 08:22:20 -0800 (PST)
Received: by 10.229.236.201 with HTTP; Mon, 20 Feb 2012 08:22:20 -0800 (PST)
In-Reply-To: 
 <CAAKASGzy=pDvW-wbTUmqk7p+zRx4WHju=Ff9FvDAOo-dNjUU3w@mail.gmail.com>
References: <4F4024EF.9020208@gmail.com>
	<CAAKASGzy=pDvW-wbTUmqk7p+zRx4WHju=Ff9FvDAOo-dNjUU3w@mail.gmail.com>
Date: Mon, 20 Feb 2012 11:22:20 -0500
Message-ID: 
 <CAHEKYV5Nb=r-Sc76R-Bz4_5tsZVazjQ3awkC+U3-jdcdQH4qOw@mail.gmail.com>
From: Mauricio Tavares <raubvogel@gmail.com>
To: users@httpd.apache.org
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
X-Virus-Checked: Checked by ClamAV on apache.org
Subject: Re: [users@httpd] AuthType basic and kerberos

On Sun, Feb 19, 2012 at 9:41 PM, Igor Cicimov <icicimov@gmail.com> wrote:
> Thats what=A0=A0" Require valid-user=A0" doing. Try with " Require any"
>
      Tried it and it is still not letting me use the kerberos ticket,
only username+passwd.

>
> On Sun, Feb 19, 2012 at 9:23 AM, Mauricio Tavares <raubvogel@gmail.com>
> wrote:
>>
>> =A0 =A0 =A0 =A0I have an odd (to me) question. When I setup my AuthTypes=
 as so:
>>
>> =A0 =A0 =A0 =A0<Location />
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0AuthType KerberosV5
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0KrbAuthRealms DOMAIN.COM
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0KrbServiceName HTTP
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0Krb5Keytab /etc/apache2/krb5.keytab
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0KrbMethodNegotiate on
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0KrbMethodK5Passwd on
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0KrbLocalUserMapping on
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0KrbDelegateBasic off
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0KrbAuthoritative off
>>
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0AuthType basic
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0AuthName "Abby someone"
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0AuthBasicAuthoritative off
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0AuthUserFile /srv/www/com/passwd
>>
>> =A0 =A0 =A0 =A0 =A0 =A0 =A0 =A0Require valid-user
>> =A0 =A0 =A0 =A0</Location>
>>
>> is it me or the basic AuthType is forcing me to only be able to
>> authenticate by providing the user -- be it in kerberos or in the passwd
>> file -- login and password, as opposite to letting me pass the kerberos
>> ticket in (when I have one and do not want to enter the l/p)?
>>
>> ---------------------------------------------------------------------
>> The official User-To-User support forum of the Apache HTTP Server Projec=
t.
>> See <URL:http://httpd.apache.org/userslist.html> for more info.
>> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>> =A0" =A0 from the digest: users-digest-unsubscribe@httpd.apache.org
>> For additional commands, e-mail: users-help@httpd.apache.org
>>
>

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org