Re: Single auth file for many per-user directories

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 05/23/2012 06:58 AM, Richard Davies wrote:

Eric Covener wrote:

?Require<auth_username=root_directory_name>

Or alternatively, a way for me to have "Require valid-user", but then
somehow prevent users from accessing directories other than their own?
(even with a hack like rewrite rules?)

There is a shortcut if the those names are system users and they
actually own their directories:

http://httpd.apache.org/docs/2.2/mod/mod_authz_owner.html

Unfortunately, they aren't - they're just entries in an htdigest file.

Richard.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
You might be able to use mod-auth-external along with LocationMatch. I haven't used mod-auth-external, but it looks like it could work: 

<LocationMatch  "/var/www/.*">
    #mod-auth-external  <http://code.google.com/p/mod-auth-external/>  directives that call a custom script
</LocationMatch>
Then write a script that makes sure the username/password checks out and also makes sure the URI is within that user's directory. 

http://code.google.com/p/mod-auth-external/

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux