You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Boyle Owen <Ow...@swx.com> on 2003/04/28 16:26:13 UTC
RE: [users@httpd] Basic Authentication with Apache 2.44 on Solaris 8 doesn't appear to work
>-----Original Message-----
>From: jkstoltzfus@lancasterlabs.com
>
>
>There is an AllowOverride parameter in the httpd.conf file
>that needs to be
>set. By default, it is set to None.
We already had that - and it's still wrong. The user is not using
.htacces so doesn't need to set AllowOverride. In any case, the default
is "AllowOverride All".
ref:
http://marc.theaimsgroup.com/?l=apache-httpd-users&m=105151344729848&w=2
Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.
>
>-----Original Message-----
>From: Richard Crawford [mailto:rcrawford@unexmail.ucdavis.edu]
>Sent: Friday, April 25, 2003 7:30 PM
>To: users@httpd.apache.org
>Subject: [users@httpd] Basic Authentication with Apache 2.44 on Solaris
>8 doesn't appear to work
>
>
>My Directory section looks like this:
>
><Directory "/space/usr/jrun4/servers/default/cfusion/DLC/admin/">
>AuthType Basic
>AuthName "Restricted"
>AuthUserFile /space/usr/jrun4/servers/default/passwd/passwords
>Require user cfusion
></Directory>
>
>However, when I go to the website in question, I'm not prompted for a
>username or password.
>
>I've tried removing the quotes around the directory name, I've tried
>removing the trailing slash, I've tried putting quotes around the
>AuthUserFile name, I've tried recreating the passwords file several
>times. I've quadruple-checked to make sure all of the directories and
>files that are referenced exist. I have tried placing the <Directory>
>section in the main part of the httpd.conf file, and I've
>tried placing it
>in the virtual hosts section as well. I'm stumped.
>
>I have the feeling that I may be missing something. I've searched and
>re-searched on the Apache website and in several other
>websites that I've
>bookmarked that have to do with Apache security. I've looked
>through the
>rest of the httpd.conf file to make sure there are no other
>settings that
>could override the authentication here, and while I am no
>Apache guru I
>don't think I've missed anything... but I could be wrong.
>
>Does anyone have any suggestions as to where else in
>httpd.conf I might
>want to look, or any additional directives I should put into
>my <Directory>
>setting? I'm not sure if the placement of the Directory
>section in the
>httpd.conf file should matter at all (my understanding is that
>it doesn't),
>but if it does, where should I put it?
>
>
>---------------------------------------------------------------------
>The official User-To-User support forum of the Apache HTTP
>Server Project.
>See <URL:http://httpd.apache.org/userslist.html> for more info.
>To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
>For additional commands, e-mail: users-help@httpd.apache.org
>
>CONFIDENTIAL MATERIAL: This message is intended only for the use of the
>individual or entity to which it is addressed and may contain
>information
>that is privileged, confidential, and exempt from disclosure under
>applicable law. If received in error, please notify sender by
>return e-mail
>and destroy all copies of the original transmission and any
>attachments.
>Thank you. If you wish to view information about Lancaster
>Laboratories,
>Inc., please visit our website at www.lancasterlabs.com
>
>---------------------------------------------------------------------
>The official User-To-User support forum of the Apache HTTP
>Server Project.
>See <URL:http://httpd.apache.org/userslist.html> for more info.
>To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
>For additional commands, e-mail: users-help@httpd.apache.org
>
>
This message is for the named person's use only. It may contain
confidential, proprietary or legally privileged information. No
confidentiality or privilege is waived or lost by any mistransmission.
If you receive this message in error, please notify the sender urgently
and then immediately delete the message and any copies of it from your
system. Please also immediately destroy any hardcopies of the message.
You must not, directly or indirectly, use, disclose, distribute, print,
or copy any part of this message if you are not the intended recipient.
The sender's company reserves the right to monitor all e-mail
communications through their networks. Any views expressed in this
message are those of the individual sender, except where the message
states otherwise and the sender is authorised to state them to be the
views of the sender's company.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org