Re: webdav user login/validation

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Sat, 17 Oct 2015 14:52:03 -0400, you wrote:

> i run a webdav server with a number of users.
> each user has access to a private space and everybody
> has access to a common space
>
> user access their space with https://dav.example.com/Theirname
> and the common space with https://dav.klam.ca/Common
>
> to make life easier for myself and the other admins we created a apache 
> macro to configure the webdav site, see below. For each user is added to 
> a list that invokes the macro with their webdav space name and their userid.
>
> I want users to be able to access any space that they have username and 
> password for, plus they automagically get access tot eh Common area.
>
> If Joe wants access his space he can log with his userid and has 
> password and he gets accress to the areas Joe and Common, no problem.
> But if he wants then log in the Dogpound user he gets rejected with a 
> message that the space is already being access under another user id.
> Why?

My guess: Because he is already authenticated for the realm
"webdev", and that login is not valid for the Doghound location.

> What to do about it?

Probably change:
	AuthName "webdav"
to:
	AuthName "webdav_%user"

(untested)
Disadvantage: You'll have to specify the user-specific realm
when adding the user/password to the access database.

>/
>//<Macro WebDavUser %location %user>//
>//# %location//
>//
>//Â Â Â  Alias /%location /srv/webdav/data/%location//
>//
>//Â Â Â  <Directory /srv/webdav/data/%location>//
>//Â Â Â Â Â Â Â  DAV On//
>//Â Â Â Â Â Â Â  Options +Indexes +MultiViews +FollowSymLinks//
>//Â Â Â Â Â Â Â  IndexOptions -IconsAreLinks +NameWidth=* +FancyIndexing 
>+SuppressLastModified +FoldersFirst +HTMLTable//
>//Â Â Â Â Â Â Â  IndexOrderDefault Ascending Name//
>//Â Â Â Â Â Â Â  DirectoryIndex .harryboy.none//
>//Â Â Â Â Â Â Â  AllowOverride None//
>//Â Â Â Â Â Â Â  Order allow,deny//
>//Â Â Â Â Â Â Â  Allow from all//
>//Â Â Â Â Â Â Â  DavDepthInfinity on//
>//Â Â Â Â Â Â Â  DavMinTimeout 600//
>//Â Â Â Â Â Â Â  <RequireAny>//
>//Â Â Â Â Â Â Â Â Â Â Â  <RequireAll>//
>//Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â  Require expr %{REQUEST_URI} =~ m#Common$#//
>//Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â  Require valid-user//
>//Â Â Â Â Â Â Â Â Â Â Â  </RequireAll>//
>//Â Â Â Â Â Â Â Â Â Â Â  <RequireAll>//
>//Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â  AuthType Digest//
>//Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â  AuthName "webdav"//
>//Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â  AuthDigestProvider file//
>//Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â  AuthUserFile /srv/webdav/auth.d/digest_pw//
>//Â Â Â Â Â Â Â Â Â Â Â Â Â Â Â  Require user %user//
>//Â Â Â Â Â Â Â Â Â Â Â  </RequireAll>//
>//Â Â Â Â Â Â Â  </RequireAny>//
>//Â Â Â  </Directory>//
>//</Macro>/

-- 
Regards,

Kees Nuyt


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx




[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux