2 times user password dialogs - only one would be enough for me

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hello List Members,

I used Apache 2.4 for this post.
I have problems with the auth modules:

I have a vhost, that work well (but 2 dialog's).
in path / apache2.4 present me a AuthType Form
data with input fields (usernam + pass), and a
submit button.
All clear.
But when I run the apache server with the directives
shpwn bellow, I get 2 dialogs, but I need only one.

When I try to protect the path /index/
I get error.log:

AH00354: Child: Starting 64 worker threads.
AH00027: No authentication done but request not allowed without
authentication for /index/index.php. Authentication not configured?

This message occur's, when I use the following section in vhost:

<Directory "${APACHE_SRC}/html/443/index/">
  Require valid-user
</Directory

<VirtualHost *:443>
...
    DocumentRoot "${APACHE_SRC}/html/443"

    ErrorLog   "${APACHE_LOG}/error.log"
    CustomLog  "${APACHE_LOG}/access.log" combined

    <Location "${APACHE_SRC}/html/443/dologin.php">
        Options -Indexes +FollowSymLinks
        AuthFormProvider file
        AuthName "Restricted Resource"
        AuthType form
        AuthFormLoginRequiredLocation "/index.php"
        AuthFormLoginSuccessLocation  "/start.php"
        AuthUserFile  "${APACHE_SRC}/pass/ApacheAuthUser.passwd"
        AuthGroupFile "${APACHE_SRC}/pass/ApacheAuthUser.groups"
        ErrorDocument 401 /tools/web/error/404.html
        Session On
        SessionCookieName session path=/
    </Location>
    <Directory "${APACHE_SRC}/html/443/index/">
        Options -Indexes +FollowSymLinks
        AuthType basic
        AuthBasicProvider file
        AuthUserFile  "${APACHE_SRC}/pass/ApacheAuthUser.passwd"
        AuthGroupFile "${APACHE_SRC}/pass/ApacheAuthUser.groups"
        AuthName secure
        <RequireAll>
            Require valid-user
        </RequireAll>
    </Directory>
</VirtualHost>

The information's for this directives came from:
https://httpd.apache.org/docs/2.4/mod/mod_auth_form.html

And, when I add:

SetHandler form-login-handler

to

<Location "${APACHE_SRC}/html/443/dologin.php">

the user, and pass input takes no effect, so all is not
protected.

Thanks In Advice

Jens


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux