RE: [users@httpd] Cannot Get Basic Auth to Work

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 




> -----Original Message-----
> From: Michael Avila [mailto:Michael.Avila.1@xxxxxxxxxxxxx]
> Sent: Mittwoch, 7. Dezember 2005 20:56
> To: users@xxxxxxxxxxxxxxxx
> Subject: RE: [users@httpd] Cannot Get Basic Auth to Work
> 
> 
> Thanks for the reply.
> 
> Here is what is there now.
> 
> .htaccess
> ---------
> <IfModule mod_setenvif.c>
>   <IfDefine SSL>
>     SetEnvIf User-Agent ".*MSIE.*" \
>              nokeepalive ssl-unclean-shutdown \
>              downgrade-1.0 force-response-1.0
>   </IfDefine>
> </IfModule>
> 
> This was in the file and is the only uncommented text. I am 
> not using SSL.
> Iremoved everything else per your suggestion.
> 
> 
> htppd.conf
> ----------
> Alias /o E:/ApacheGroup/Apache2/d/c/a
> <Directory /o>
> AuthType Basic
> AuthName O
> Require valid-users
> AllowOverride AuthConfig Options
> AuthUserFile E:\ApacheGroup\Apache2\auth.dbm
> Options None
> Order allow,deny
> Allow from all
> </Directory>
> 
> I created the id/password with htdbm and restarted Apache. 

Further to the spelling mistake, you're using directives for a text-file based authentication scheme but your credentials are in a DB.

If you want to use dbm for the passwords, you have to use the appropriate directives, ie AuthDBMUserFile rather than AuthUserFile... and all the other ones.

See http://httpd.apache.org/docs/2.0/mod/mod_auth_dbm.html

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored. 

It 
> still does not
> work.
> 
> What next?
> 
> Mike
> 
> 
> > -----Original Message-----
> > From: Boyle Owen [mailto:Owen.Boyle@xxxxxxx]
> > Sent: Wednesday, December 07, 2005 2:57 AM
> > To: users@xxxxxxxxxxxxxxxx
> > Subject: RE: [users@httpd] Cannot Get Basic Auth to Work
> >
> >
> > Your set up is a bit of a mess....
> >
> > 1) You don't need (and should have) Auth directives in the main
> > config *and* in a .htaccess file. For simplicity, I'd recommend
> > all directives in the main config and only use a .htaccess file
> > if you really need to (if you don't know whether to use a
> > .htaccess file... don't use it).
> >
> > 2) You need an AuthUserFile directive to tell apache where to
> > find the file with the list of users and passwords (see
> > http://httpd.apache.org/docs/2.0/mod/mod_auth.html#authuserfile)
> >
> > 3) "Require user all" doesn't make sense unless you have a user
> > called "all". If you just want to restrict access to user who
> > have an entry in the AuthUserFile (see #2), then put "Require
> > valid-user" (see 
> http://httpd.apache.org/docs/2.0/mod/core.html#require).
> >
> > Rgds,
> > Owen Boyle
> > Disclaimer: Any disclaimer attached to this message may be ignored.
> >
> >
> > >  -----Original Message-----
> > > From: 	Michael Avila [mailto:Michael.Avila.1@xxxxxxxxxxxxx]
> > > Sent:	Mittwoch, 7. Dezember 2005 00:23
> > > To:	Apache - User Mailing List
> > > Subject:	[users@httpd] Cannot Get Basic Auth to Work
> > >
> > > Windows XP Pro SP2
> > > Apache 2.0.55
> > >
> > > I have had basic auth working in the past and I looked at
> > several examples to set this up but for some reason it is not
> > working. It is time for me to present it to someone else as I may
> > not be seeing the trees because the forest is so big!
> > >
> > > Thanks for the help.
> > >
> > > Mike
> > >
> > >
> > > hpptd.conf
> > > ---------------
> > > LoadModule auth_module modules/mod_auth.so
> > > LoadModule auth_dbm_module modules/mod_auth_dbm.so
> > >
> > > UseCanonicalName Off   <------ was on but turned it off as I
> > saw a post about it causing problems
> > >
> > > Alias /o E:/ApacheGroup/Apache2/d/c/a     <---------------
> > changed the names because it is wide open now
> > > <Directory /o>
> > > AuthType Basic
> > > AuthName O
> > > Require user all
> > > AllowOverride AuthConfig Options
> > > Options None
> > > Order allow,deny
> > > Allow from all
> > > </Directory>
> > >
> > > ==========================================
> > >
> > > .htaccess
> > > --------------
> > > <IfModule mod_setenvif.c>
> > <----------- this already was in the .htaccesss file
> > >   <IfDefine SSL>
> > >     SetEnvIf User-Agent ".*MSIE.*" \
> > >              nokeepalive ssl-unclean-shutdown \
> > >              downgrade-1.0 force-response-1.0
> > >   </IfDefine>
> > > </IfModule>
> > >
> > > AuthType Basic
> > > AuthName O
> > > Require user
> > > AllowOverride AuthConfig Options
> > >  << File: ATT975377.txt >>
> >
> >
> > Diese E-mail ist eine private und persönliche Kommunikation. Sie
> > hat keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX
> > Gruppe. This e-mail is of a private and personal nature. It is
> > not related to the exchange or business activities of the SWX
> > Group. Le présent e-mail est un message privé et personnel, sans
> > rapport avec l'activité boursière du Groupe SWX.
> >
> >
> > This message is for the named person's use only. It may contain
> > confidential, proprietary or legally privileged information. No
> > confidentiality or privilege is waived or lost by any
> > mistransmission. If you receive this message in error, please
> > notify the sender urgently and then immediately delete the
> > message and any copies of it from your system. Please also
> > immediately destroy any hardcopies of the message. You must not,
> > directly or indirectly, use, disclose, distribute, print, or copy
> > any part of this message if you are not the intended recipient.
> > The sender's company reserves the right to monitor all e-mail
> > communications through their networks. Any views expressed in
> > this message are those of the individual sender, except where the
> > message states otherwise and the sender is authorised to state
> > them to be the views of the sender's company.
> >
> > 
> ---------------------------------------------------------------------
> > The official User-To-User support forum of the Apache HTTP 
> Server Project.
> > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
> >    "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
> > For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
> >
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP 
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
>    "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
> For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
> 
> 

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx



[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux