You are viewing a plain text version of this content. The canonical link for it is here.

Posted to apache-bugdb@apache.org by Stuart Peters <s....@soc.surrey.ac.uk> on 1998/11/11 13:54:16 UTC

general/3377: .htaccess _requires_ AuthType directive in order to work

>Number:         3377
>Category:       general
>Synopsis:       .htaccess _requires_ AuthType directive in order to work
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    apache
>State:          open
>Class:          sw-bug
>Submitter-Id:   apache
>Arrival-Date:   Wed Nov 11 05:00:00 PST 1998
>Last-Modified:
>Originator:     s.peters@soc.surrey.ac.uk
>Organization:
apache
>Release:        1.3.3
>Environment:
SunOS kennedy 5.4 Generic_101945-32 sun4m sparc
>Description:
.htaccess files seem to require an AuthType directive even if only IP authentication is set.  This was not the case with Apache 1.2.x and should at least be documented if it is not a bug.
>How-To-Repeat:
The second of the two following .htaccess files works, the first doesn't...

<limit GET>
allow from all
satisfy any
</limit>



<limit GET>
allow from all
satisfy any
AuthType Basic
</limit>
>Fix:

>Audit-Trail:
>Unformatted:
[In order for any reply to be added to the PR database, ]
[you need to include <ap...@Apache.Org> in the Cc line ]
[and leave the subject line UNCHANGED.  This is not done]
[automatically because of the potential for mail loops. ]
[If you do not include this Cc, your reply may be ig-   ]
[nored unless you are responding to an explicit request ]
[from a developer.                                      ]
[Reply only with text; DO NOT SEND ATTACHMENTS!         ]