You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by David Mansfield <ap...@dm.cobite.com> on 2013/05/01 20:13:06 UTC

[users@httpd] mod_auth_form and original POST body

Hi All:

I'm using apache 2.4.4 compiled on Centos 6.3 and attempting to use 
mod_auth_form for "inline login with body preservation".

The problem is that the POSTed body (from the original/unauthenticated 
page) is lost forever when the login page is rendered, so it seems 
impossible to know what to put for the value of the httpd_body variable.

I have tried both a cgi and a mod_include based script.   I have

KeptBodySize 65536

along with one of

ErrorDocument 401 /cgi-bin/login.cgi

or

ErrorDocument 401 /login.shtml

How can I access the original POST data during the login page rendering 
in this scenario?

It seems the fundamental problem is the ErrorDocument handler is 
discarding the POST during internal redirect...

-- 
Thanks,
David Mansfield
Cobite, INC.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] mod_auth_form and original POST body

Posted by David Mansfield <ap...@dm.cobite.com>.

Yes.  You can see that below.  I tried KeptBodySize 65536.

I think my troubles are related to an open bug actually:

https://issues.apache.org/bugzilla/show_bug.cgi?id=53692

So it seems I'm on the right track but that bug is stopping things from 
working.

Looking in the debugging it seems the keptbodysize input filter runs 
after the form data has already been consumed by mod_auth_form. Although 
I'm not sure if that means anything...

David


On 05/02/2013 04:50 PM, Paul Norton wrote:
> Hello David
> Have you tried mod_request->keptbodysize 
> http://httpd.apache.org/docs/2.4/mod/mod_request.html#keptbodysize
>
> All the best Paul
>
>
>
> On 1 May 2013 19:13, David Mansfield <apache@dm.cobite.com 
> <ma...@dm.cobite.com>> wrote:
>
>     Hi All:
>
>     I'm using apache 2.4.4 compiled on Centos 6.3 and attempting to
>     use mod_auth_form for "inline login with body preservation".
>
>     The problem is that the POSTed body (from the
>     original/unauthenticated page) is lost forever when the login page
>     is rendered, so it seems impossible to know what to put for the
>     value of the httpd_body variable.
>
>     I have tried both a cgi and a mod_include based script.   I have
>
>     KeptBodySize 65536
>
>     along with one of
>
>     ErrorDocument 401 /cgi-bin/login.cgi
>
>     or
>
>     ErrorDocument 401 /login.shtml
>
>     How can I access the original POST data during the login page
>     rendering in this scenario?
>
>     It seems the fundamental problem is the ErrorDocument handler is
>     discarding the POST during internal redirect...
>
>     -- 
>     Thanks,
>     David Mansfield
>     Cobite, INC.
>
>     ---------------------------------------------------------------------
>     To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>     <ma...@httpd.apache.org>
>     For additional commands, e-mail: users-help@httpd.apache.org
>     <ma...@httpd.apache.org>
>
>
>
>
> -- 
> /"I know one thing: That I know nothing"/ - Socrates
> /"We're all explorers here"/ - T S Eliot

Re: [users@httpd] mod_auth_form and original POST body

Posted by Paul Norton <pn...@gmail.com>.

Hello David
Have you tried mod_request->keptbodysize
http://httpd.apache.org/docs/2.4/mod/mod_request.html#keptbodysize

All the best Paul



On 1 May 2013 19:13, David Mansfield <ap...@dm.cobite.com> wrote:

> Hi All:
>
> I'm using apache 2.4.4 compiled on Centos 6.3 and attempting to use
> mod_auth_form for "inline login with body preservation".
>
> The problem is that the POSTed body (from the original/unauthenticated
> page) is lost forever when the login page is rendered, so it seems
> impossible to know what to put for the value of the httpd_body variable.
>
> I have tried both a cgi and a mod_include based script.   I have
>
> KeptBodySize 65536
>
> along with one of
>
> ErrorDocument 401 /cgi-bin/login.cgi
>
> or
>
> ErrorDocument 401 /login.shtml
>
> How can I access the original POST data during the login page rendering in
> this scenario?
>
> It seems the fundamental problem is the ErrorDocument handler is
> discarding the POST during internal redirect...
>
> --
> Thanks,
> David Mansfield
> Cobite, INC.
>
> ------------------------------**------------------------------**---------
> To unsubscribe, e-mail: users-unsubscribe@httpd.**apache.org<us...@httpd.apache.org>
> For additional commands, e-mail: users-help@httpd.apache.org
>
>


-- 
* "I know one thing: That I know nothing"* - Socrates
*"We're all explorers here"* - T S Eliot