httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mark Jas <>
Subject [users@httpd] htaccess settings not working in combination with kerberos
Date Wed, 02 May 2012 13:40:56 GMT

I have a vhost configured to use kerberos authentication against a windows AD. Authentication
works great, but some of the settings in the .htaccess file are not working.

My apache version is 2.2.15.

My files directive and my rewriterule have no effect at all, while my php_flag and php_value
settings are working!?

When I disable kerberos authentication, everything in the .htaccess works perfectly.

Here the relevant parts of the httpd.conf:

<Directory "/var/www/html-prod">

    Options Indexes FollowSymLinks

    AllowOverride All

    Order allow,deny

    Allow from all


<VirtualHost *:80>

    ServerAdmin root@domain.local <mailto:root@domain.local> 

    DocumentRoot /var/www/html-prod/

    ServerName itr01.domain.local

    <Location />

        AuthType Kerberos

        AuthName "KRB Login"

        KrbAuthRealms DOMAIN.LOCAL

        KrbServiceName HTTP

        Krb5Keytab /etc/httpd/adm.keytab

        KrbMethodNegotiate on

        KrbMethodK5Passwd off

        <Limit GET>

                satisfy any

                Order allow,deny

                Allow from localhost

                require valid-user


        RewriteEngine on

        ErrorDocument 401 "<html><meta http-equiv=\"refresh\" content=\"0;url=https://redirect.domain.local\"></html>"



Here the content of my /var/www/html-prod/.htaccess

DirectoryIndex index.php

Options FollowSymlinks

<IfModule mod_php5.c>

    php_flag session.auto_start off

    php_flag register_globals off

    php_flag allow_call_time_pass_reference off

    php_flag magic_quotes_gpc off

    php_flag short_open_tag on

    php_flag session.use_trans_sid off

    php_value upload_max_filesize 50M

    php_value post_max_size 50M

    php_value error_reporting 8191

    php_value max_input_time -1


# Prevent different files from download

<Files ~ "^\.ht|((inc|sql|tar|gz|~|qdo)$)">

    Order allow,deny

    Deny from all

    Satisfy All


<IfModule mod_rewrite.c>

RewriteEngine On

RewriteCond %{REQUEST_FILENAME} !-f

RewriteRule . /index.php [L]



With regards,

Mark Jas


View raw message