You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by Tim <ni...@linuxstuff.info> on 2011/07/02 15:56:34 UTC

[users@httpd] mod_authnz_ldap Non Authorized users

Hey All,

So I have been playing with mod_authnz_ldap and Authentication and
Authorizations works perfectly. However, the first time a Non-Authorized
users attempts to login I want to stop prompting and display to the user
the 401 error msg. Is this even possible?

As it is now, this is not the case the user is prompted another two times
and then it fails - and displays the 401 error.

However, if the user fat fingers their password it should prompt again.

Any advice?

Tim

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

[users@httpd] mod_authnz Authenticate_ Env variables

Posted by Tim <ni...@linuxstuff.info>.

How do I capture this? When a user successfully logs in?

I need to capture the username that successfully logged.

Tim	

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] mod_authnz_ldap Non Authorized users

Posted by Tim <ni...@linuxstuff.info>.

Ah ok thanks...

On 7/4/2011 6:15 AM, Tom Evans wrote:
> On Sat, Jul 2, 2011 at 8:45 PM, Tim <ni...@linuxstuff.info> wrote:
>>
>> Yes. Its the Browser username and prompt that appears.
>>
> 
> You misunderstood Eric. What you are seeing is the browser prompting
> for authentication 3 times. Most (all?) browsers will do this when
> they receive a 401 response, and only on the third failed validation
> attempt (or after clicking cancel) will the browser actually display
> the 401 response as sent by Apache.
> 
> In other words - you cannot modify this behaviour from Apache, it is
> controlled solely by the User Agent.
> 
> Cheers
> 
> Tom
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] mod_authnz_ldap Non Authorized users

Posted by Tom Evans <te...@googlemail.com>.

On Sat, Jul 2, 2011 at 8:45 PM, Tim <ni...@linuxstuff.info> wrote:
>
> Yes. Its the Browser username and prompt that appears.
>

You misunderstood Eric. What you are seeing is the browser prompting
for authentication 3 times. Most (all?) browsers will do this when
they receive a 401 response, and only on the third failed validation
attempt (or after clicking cancel) will the browser actually display
the 401 response as sent by Apache.

In other words - you cannot modify this behaviour from Apache, it is
controlled solely by the User Agent.

Cheers

Tom

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] mod_authnz_ldap Non Authorized users

Posted by Tim <ni...@linuxstuff.info>.

Yes. Its the Browser username and prompt that appears.

On 7/2/2011 9:20 AM, Eric Covener wrote:
> On Sat, Jul 2, 2011 at 9:56 AM, Tim <ni...@linuxstuff.info> wrote:
>> Hey All,
>>
>> So I have been playing with mod_authnz_ldap and Authentication and
>> Authorizations works perfectly. However, the first time a Non-Authorized
>> users attempts to login I want to stop prompting and display to the user
>> the 401 error msg. Is this even possible?
>>
>> As it is now, this is not the case the user is prompted another two times
>> and then it fails - and displays the 401 error.
> 
> 
> Are you just seeing some browser decision? I think the response is
> actually the same over and over.
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] mod_authnz_ldap Non Authorized users

Posted by Eric Covener <co...@gmail.com>.

On Sat, Jul 2, 2011 at 9:56 AM, Tim <ni...@linuxstuff.info> wrote:
> Hey All,
>
> So I have been playing with mod_authnz_ldap and Authentication and
> Authorizations works perfectly. However, the first time a Non-Authorized
> users attempts to login I want to stop prompting and display to the user
> the 401 error msg. Is this even possible?
>
> As it is now, this is not the case the user is prompted another two times
> and then it fails - and displays the 401 error.


Are you just seeing some browser decision? I think the response is
actually the same over and over.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org