perl-modperl mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Philip M. Gollucci" <>
Subject Re: MP2: Dealing with AuthCookie and IE's "You are about to be redirected ..."
Date Sat, 08 Apr 2006 03:59:25 GMT
> Instead of the 302 redirect, give a 400 responce, and a meta-refresh 
> tag. <meta http-equiv="refresh" content="0;url=">
> I'll need to modify a local copy of Apache2::AuthCookie to do this, but 
> I wondered if there are other solutions out there for this problem.
Well, I'm not using Apache2::AuthCookie, but this site doesn't get that.

[test site, test ssl certificate thats expired]

non ssl vhost
RewriteRule  ^/timeline/login   https://%{SERVER_NAME}/timeline/login [L,R]

ssl host (can't vhost ssl)
RewriteRule  ^/timeline/intro   http://%{SERVER_NAME}/timeline/intro [L,R]

In the first handler /login  which is served from the ssl server after a 
redirect from the non-ssl via mod_rewrite:

use Apache2::RequestRec ();
use Apache2::Const -compile => qw(OK);

use APR::Request ();
use APR::Request::Apache2 ();
use APR::Request::Cookie ();

sub handler {
   my $r = shift;
   my $req = APR::Request::Apache2->handle($r);


   my $cookie = APR::Request::Cookie->new(
     name   => "login",
     value  => $encrypted_credentials,
     path   => ISST::Const::URL_BASE,
     domain => ISST::Const::COOKIE_DOMAIN

   $r->err_headers_out->add('Set-Cookie' => $cookie->as_string);

   $r->headers_out->set(Location => ISST::Const::URL_INTRO);
   eturn Apache2::Const::REDIRECT;


Philip M. Gollucci ( 323.219.4708
Consultant /
Senior Software Engineer - TicketMaster -
1024D/A79997FA F357 0FDD 2301 6296 690F  6A47 D55A 7172 A799 97F

"It takes a minute to have a crush on someone, an hour to like someone,
and a day to love someone, but it takes a lifetime to forget someone..."

View raw message