You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Richard Crawford <rc...@unexmail.ucdavis.edu> on 2003/04/28 17:17:09 UTC

Re: [users@httpd] Basic Authentication with Apache 2.44 on Solaris 8 doesn't appear to work

I've confirmed (over and over and over and over... ad nauseum) that the 
directory in question is, in fact, the proper directory.  Gah.

The only thing I can think of at this point is that jrun is somehow 
interfering with Apache.  When a user goes to the site in question, there 
is a "cfmx" inserted into the URL.  My understanding is that this is a 
"context_root" which somehow allows the jrun server to interpret J2EE and 
Cold Fusion.  There is no directory or process called "cfmx" on the 
machine, but it might be interfering somehow anyway.

At any rate, I think we're going to create a solution in Cold Fusion, since 
Basic authentication is not as secure as we want anyway.

Thanks for the suggestion.

At 08:03 PM 4/25/2003 -0400, you wrote:
>The only thing that I can suggest is that just perhaps that isn't the
>actual path to the directory, or it's not the path that Apache is
>*using* to get to the directory. If Apache is accessing the directory
>via a different path (say, via a symlink) then it won't apply these
>directives to the content.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] RESOLVED (sort of): Re: [users@httpd] Basic Authentication with Apache 2.44 on Solaris 8 doesn't appear to work

Posted by Richard Crawford <rc...@unexmail.ucdavis.edu>.

Thanks for the tip.  Unfortunately, it didn't work.

I'm learning that the intermingling of JRun and Apache is a bizarre 
labyrinthine construct of entangled processes and servers, maintaining a 
delicate balance that will crash your web services app if you look at them 
funny.  Gah.


At 03:40 PM 4/28/2003 -0400, you wrote:

>Have you tried changing the order that the jrun_module is loaded/added?
> From what I can tell, Apache runs the HTTP requests through the modules, in
>the order they were loaded.  You might want to double check that mod_auth
>(or whichever auth mod you are using) is loaded/added before jrun_module.
>Or vice-versa.
>
>I had problems with php not parsing content on ssl sites, and it turned out
>that the order of mod_ssl and php mattered.
>
>Of course, be sure to restart apache after httpd.conf changes.
>
>-Jacob


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] RESOLVED (sort of): Re: [users@httpd] Basic Authentication with Apache 2.44 on Solaris 8 doesn't appear to work

Posted by Jacob Coby <jc...@listingbook.com>.

> I've done some Googling on JRun and Apache and authentication, figuring
> that JRun might be interfering with the process somehow.
>
> I was right.  It seems that the JRun module loaded by
>
> LoadModule jrun_module
>
> intercepts http requests before Apache does, so the authentication
requests
> are never received by Apache.
>
> This is ugly.  There is probably a way to address the issue using Cold
> Fusion or JSP but I can't think of anything off the top of my head.

Have you tried changing the order that the jrun_module is loaded/added?
>From what I can tell, Apache runs the HTTP requests through the modules, in
the order they were loaded.  You might want to double check that mod_auth
(or whichever auth mod you are using) is loaded/added before jrun_module.
Or vice-versa.

I had problems with php not parsing content on ssl sites, and it turned out
that the order of mod_ssl and php mattered.

Of course, be sure to restart apache after httpd.conf changes.

-Jacob


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

[users@httpd] RESOLVED (sort of): Re: [users@httpd] Basic Authentication with Apache 2.44 on Solaris 8 doesn't appear to work

Posted by Richard Crawford <rc...@unexmail.ucdavis.edu>.

I've done some Googling on JRun and Apache and authentication, figuring 
that JRun might be interfering with the process somehow.

I was right.  It seems that the JRun module loaded by

	LoadModule jrun_module

intercepts http requests before Apache does, so the authentication requests 
are never received by Apache.

This is ugly.  There is probably a way to address the issue using Cold 
Fusion or JSP but I can't think of anything off the top of my head.

Thanks to everyone who responded with suggestions.  I really appreciate it!


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org