You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@httpd.apache.org by bu...@apache.org on 2005/04/08 20:43:28 UTC
DO NOT REPLY [Bug 34377] New: -
Allow the overriding of 401 Unauthorized returns from an origin server.
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG�
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=34377>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND�
INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=34377
Summary: Allow the overriding of 401 Unauthorized returns from an
origin server.
Product: Apache httpd-2.0
Version: 2.1-HEAD
Platform: All
URL: http://primero.ricilake.net/proxy21.patch
OS/Version: All
Status: NEW
Keywords: PatchAvailable
Severity: enhancement
Priority: P2
Component: mod_proxy
AssignedTo: bugs@httpd.apache.org
ReportedBy: ricilake@speedy.com.pe
This patch (also available for Apache 2.0 at
http://primero.ricilake.net/proxy2.patch ) implements a single directive:
ProxyAuthOverride 403 | 404 | Off
which, if not set to Off, converts 401 Unauthorized returns from a proxied
origin server into 403 or 404 status codes. It is intended for use in a reverse
proxy environment where it is not desirable to allow authentication with the
origin server.
Possibly the directive should also scrub Authorization: headers from the
request, as it is hard to imagine a use case where this is not desirable.
However, that can easily be done with mod_headers.
--
Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org