Return-Path: <users-return-115415-archive-asf-public=cust-asf.ponee.io@httpd.apache.org>
X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io
Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io
Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183])
	by cust-asf2.ponee.io (Postfix) with ESMTP id 50C06200C5E
	for <archive-asf-public-internal@cust-asf2.ponee.io>; Sat,  8 Apr 2017 08:23:14 +0200 (CEST)
Received: by cust-asf.ponee.io (Postfix)
	id 4452E160BA2; Sat,  8 Apr 2017 06:23:14 +0000 (UTC)
Delivered-To: archive-asf-public@cust-asf.ponee.io
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by cust-asf.ponee.io (Postfix) with SMTP id 669AD160B97
	for <archive-asf-public@cust-asf.ponee.io>; Sat,  8 Apr 2017 08:23:13 +0200 (CEST)
Received: (qmail 92477 invoked by uid 500); 8 Apr 2017 06:23:12 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
List-Post: <mailto:users@httpd.apache.org>
List-Id: <users.httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 92467 invoked by uid 99); 8 Apr 2017 06:23:12 -0000
Received: from pnap-us-west-generic-nat.apache.org (HELO spamd2-us-west.apache.org) (209.188.14.142)
    by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 08 Apr 2017 06:23:12 +0000
Received: from localhost (localhost [127.0.0.1])
	by spamd2-us-west.apache.org (ASF Mail Server at spamd2-us-west.apache.org) with ESMTP id A988A1A04BF
	for <users@httpd.apache.org>; Sat,  8 Apr 2017 06:23:11 +0000 (UTC)
X-Virus-Scanned: Debian amavisd-new at spamd2-us-west.apache.org
X-Spam-Flag: NO
X-Spam-Score: 4.381
X-Spam-Level: ****
X-Spam-Status: No, score=4.381 tagged_above=-999 required=6.31
	tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1,
	HTML_MESSAGE=2, KAM_BADIPHTTP=2, NORMAL_HTTP_TO_IP=0.001,
	RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01,
	RCVD_IN_MSPIKE_WL=-0.01, RCVD_IN_SORBS_SPAM=0.5, SPF_PASS=-0.001,
	WEIRD_PORT=0.001] autolearn=disabled
Authentication-Results: spamd2-us-west.apache.org (amavisd-new);
	dkim=pass (2048-bit key) header.d=gmail.com
Received: from mx1-lw-eu.apache.org ([10.40.0.8])
	by localhost (spamd2-us-west.apache.org [10.40.0.9]) (amavisd-new, port 10024)
	with ESMTP id JckIEV1Auh65 for <users@httpd.apache.org>;
	Sat,  8 Apr 2017 06:23:09 +0000 (UTC)
Received: from mail-lf0-f48.google.com (mail-lf0-f48.google.com [209.85.215.48])
	by mx1-lw-eu.apache.org (ASF Mail Server at mx1-lw-eu.apache.org) with ESMTPS id 1D7DF5F4AC
	for <users@httpd.apache.org>; Sat,  8 Apr 2017 06:23:09 +0000 (UTC)
Received: by mail-lf0-f48.google.com with SMTP id q141so21015004lfe.2
        for <users@httpd.apache.org>; Fri, 07 Apr 2017 23:23:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=mime-version:from:date:message-id:subject:to;
        bh=krhakpAB9j9F5D02oVdwgRp2ypdrZ/aLUscq88M+l6k=;
        b=QWgHziY2si141fk6gH1G0rauhDUqF4id71TC2uZoToMQQYxp+S4q5j2TMMh/2ZBtQL
         ZjANHDdPfUljhnPug6W/RQeCW+/k0EyttibYvYXDycwWttBVguiBmmxuf9oHDDfp4RWy
         IGYALd/4cTdPWRM4TH0kQS8JUn3I0GDYlfDZPW3i8Mc5wFNgivTG7QDECJnfAD8SdoaD
         Pem+avvN4jVPA3K2V8Db3rNSutXMpzvFq7Q7aWr5neUUiqy/aiNeu7IYgwbdWKWO78dW
         rL782hYyqkNc0yvJFcBpEuYDqKAC2UPnAP1BuQ/Dx339c6Dx5SVVcWybcRUPJ1kwMXqG
         ktlw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:from:date:message-id:subject:to;
        bh=krhakpAB9j9F5D02oVdwgRp2ypdrZ/aLUscq88M+l6k=;
        b=Ry5PA8CYIkfVdXrVoe4i/6wBRppcMiJy5G1bOTVUU+xLHq4048GOZE9zftTcI/hbkf
         so8i8HDgitQm0V+o7sH50ttgt4kZG/ivUEPpwHtsGxc9dWZuK7dsPdGhiIbmyho+Dj4x
         yLTp+yd/uOjZPrIG/ku6G3rdsDAxMHp+NeUzRc2uOS0GLkCUaVrIR6eUJc3QJZCA0A8d
         R0J1DXBVUoGakHea9Bsehr0Igqo3t9lQqWCr6SL4Z+xYfZrHD9chB4jYO+j2jtQQh4KS
         1DmcVE4cTEkBg2E801IHjB+fhcDp8E16WyMWcsOgbcwWWdIRQAM0CWzBHB37ttCklsMJ
         0f1A==
X-Gm-Message-State: AFeK/H2v9UugN/kj1RFMEFOxeAtA1RSUQztQ5yASOFMwVufd1auAyZ7xy8YNm162KeIsZA9+26ZcDX+5yHyvGw==
X-Received: by 10.46.22.92 with SMTP id 28mr12490133ljw.55.1491632588094; Fri,
 07 Apr 2017 23:23:08 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.25.128.149 with HTTP; Fri, 7 Apr 2017 23:23:07 -0700 (PDT)
From: Ajay Garg <ajaygargnsit@gmail.com>
Date: Sat, 8 Apr 2017 11:53:07 +0530
Message-ID: <CAHP4M8X6WRhCih9CuLOAG0aKciV0e+Z=Syt2YiV_9tgT4D_c4w@mail.gmail.com>
To: users@httpd.apache.org
Content-Type: multipart/alternative; boundary=f403045fb7a68c81e4054ca1c66e
Subject: [users@httpd] Authentication BEFORE proxying
archived-at: Sat, 08 Apr 2017 06:23:14 -0000

--f403045fb7a68c81e4054ca1c66e
Content-Type: text/plain; charset=UTF-8

Hi All.

If I setup the following in a virtual-host,

####################################################################################
Listen 9001
<VirtualHost *:9001>
        DocumentRoot /var/www/html

        <Directory "/var/www/html">
            AuthType Basic
            AuthName "Restricted Content"
            AuthUserFile /home/f5a6b457ba0d416cb4847bb3c4c6e6b6/.htpasswd
            Require valid-user
        </Directory>

        ProxyPass / http://127.0.0.1:9000/
        ProxyPassReverse / http://127.0.0.1:9000/

</VirtualHost>
#####################################################################################


and I type http://1.2.3.4:9001 in the browser, I get taken directly to the
proxy-address, without the auth-dialog popping up.

If however, I remove the "ProxyPass" and "ProxyPassReverse" directives, and
I type the same http://1.2.3.4:9001 in the broswer, the auth-dialog pops up
as expected.


Is there a way to first let the auth-dialog pop-up, and only if credentials
are correct, to move to the proxy-address?

Looking forward to some help.


Thanks and Regards,
Ajay

--f403045fb7a68c81e4054ca1c66e
Content-Type: text/html; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div>Hi All.<br><br></div>If I setup the following in a vi=
rtual-host,<br><div><div><br>##############################################=
######################################<br>Listen 9001<br>&lt;VirtualHost *:=
9001&gt;<br>=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 DocumentRoot /var/ww=
w/html<br><br>=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 &lt;Directory &quo=
t;/var/www/html&quot;&gt;<br>=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=
=A0=C2=A0=C2=A0=C2=A0 AuthType Basic<br>=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=
=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 AuthName &quot;Restricted Content&quot;<b=
r>=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 AuthUs=
erFile /home/f5a6b457ba0d416cb4847bb3c4c6e6b6/.htpasswd<br>=C2=A0=C2=A0=C2=
=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 Require valid-user<br>=
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 &lt;/Directory&gt;<br><br>=C2=A0=
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 ProxyPass / <a href=3D"http://127.0.0.=
1:9000/">http://127.0.0.1:9000/</a><br>=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=
=C2=A0 ProxyPassReverse / <a href=3D"http://127.0.0.1:9000/">http://127.0.0=
.1:9000/</a><br><br>&lt;/VirtualHost&gt;<br>###############################=
######################################################<br><br><br></div><di=
v>and I type <a href=3D"http://1.2.3.4:9001">http://1.2.3.4:9001</a> in the=
 browser, I get taken directly to the proxy-address, without the auth-dialo=
g popping up.<br><br></div><div>If however, I remove the &quot;ProxyPass&qu=
ot; and &quot;ProxyPassReverse&quot; directives, and I type the same <a hre=
f=3D"http://1.2.3.4:9001">http://1.2.3.4:9001</a> in the broswer, the auth-=
dialog pops up as expected.<br><br><br></div><div>Is there a way to first l=
et the auth-dialog pop-up, and only if credentials are correct, to move to =
the proxy-address?<br clear=3D"all"></div><div><br></div><div>Looking forwa=
rd to some help.<br></div><div><br><br><div class=3D"gmail_signature">Thank=
s and Regards,<br>Ajay<br></div>
</div></div></div>

--f403045fb7a68c81e4054ca1c66e--