You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by "D'Ausilio, John" <Jo...@mlp.com> on 2008/02/14 18:55:22 UTC
[users@httpd] HTTP OPTIONS and auth issues
I've got a tomcat app with apache (2.2) in front of it. Apache handles
the auth through LDAP and requires membership in a specific group. One
of the app features allows the user to generate an csv file from some
data and download it. When this download fires with an IE client, the
browser also issues an HTTP OPTIONS request against / which fails with a
401 and pops the auth dialog again. Users can just cancel that dialog
and proceed, but I'd rather it didn't appear at all! Is there some way
to configure apache to route OPTIONS requests to the bit-bucket? Is it
Apache or really Tomcat that's generating the 401? Any hints/clues
appreciated!
jd
######################################################################
The information contained in this communication is confidential and
may contain information that is privileged or exempt from disclosure
under applicable law. If you are not a named addressee, please notify
the sender immediately and delete this email from your system.
If you have received this communication, and are not a named
recipient, you are hereby notified that any dissemination,
distribution or copying of this communication is strictly prohibited.
######################################################################
RE: [users@httpd] HTTP OPTIONS and auth issues
Posted by "D'Ausilio, John" <Jo...@mlp.com>.
Excellent! Works like a charm! Thanks kindly!!
jd
-----Original Message-----
From: jslive@gmail.com [mailto:jslive@gmail.com] On Behalf Of Joshua
Slive
Sent: Thursday, February 14, 2008 1:29 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] HTTP OPTIONS and auth issues
On Thu, Feb 14, 2008 at 12:55 PM, D'Ausilio, John
<Jo...@mlp.com> wrote:
>
>
>
>
> I've got a tomcat app with apache (2.2) in front of it. Apache handles
the
> auth through LDAP and requires membership in a specific group. One of
the
> app features allows the user to generate an csv file from some data
and
> download it. When this download fires with an IE client, the browser
also
> issues an HTTP OPTIONS request against / which fails with a 401 and
pops the
> auth dialog again. Users can just cancel that dialog and proceed, but
I'd
> rather it didn't appear at all! Is there some way to configure apache
to
> route OPTIONS requests to the bit-bucket? Is it Apache or really
Tomcat
> that's generating the 401? Any hints/clues appreciated!
You could try wrapping your auth directives in a <LimitExcept OPTIONS>
... </LimitExcept>.
Joshua.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
######################################################################
The information contained in this communication is confidential and
may contain information that is privileged or exempt from disclosure
under applicable law. If you are not a named addressee, please notify
the sender immediately and delete this email from your system.
If you have received this communication, and are not a named
recipient, you are hereby notified that any dissemination,
distribution or copying of this communication is strictly prohibited.
######################################################################
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] HTTP OPTIONS and auth issues
Posted by Joshua Slive <jo...@slive.ca>.
On Thu, Feb 14, 2008 at 12:55 PM, D'Ausilio, John <Jo...@mlp.com> wrote:
>
>
>
>
> I've got a tomcat app with apache (2.2) in front of it. Apache handles the
> auth through LDAP and requires membership in a specific group. One of the
> app features allows the user to generate an csv file from some data and
> download it. When this download fires with an IE client, the browser also
> issues an HTTP OPTIONS request against / which fails with a 401 and pops the
> auth dialog again. Users can just cancel that dialog and proceed, but I'd
> rather it didn't appear at all! Is there some way to configure apache to
> route OPTIONS requests to the bit-bucket? Is it Apache or really Tomcat
> that's generating the 401? Any hints/clues appreciated!
You could try wrapping your auth directives in a <LimitExcept OPTIONS>
... </LimitExcept>.
Joshua.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org