Putting the authentication directives inside
the <VirtualHost :443> section worked.
Thanks very much.
Diana Shepard
University of Colorado
> -----Original Message-----
> From: jslive@xxxxxxxxx [mailto:jslive@xxxxxxxxx] On Behalf Of
> Joshua Slive
> Sent: Monday, December 19, 2005 5:58 PM
> To: users@xxxxxxxxxxxxxxxx
> Subject: Re: [users@httpd] https RewriteRule before authentication
>
> On 12/19/05, Diana Shepard <Diana.Shepard@xxxxxxxxx> wrote:
> >
> >
> > I am running Apache 2.0.53 on Sun Solaris 9.
> >
> > I am trying to force the use of https for a particular web site.
> > I've done:
> >
> >
> > <VirtualHost *:80>
> > ServerName www.somewhere.com
> > RewriteEngine On
> > RewriteCond %{REQUEST_URI} /somestring/ RewriteRule ^(.*)$
> > https://www.somewhere.com/$1 </VirtualHost>
> >
> > The problem is that the user must first be authenticated against an
> > ldap and that password authentication happens before the redirect;
> > defeats the whole purpose. The purpose is to encrypt the
> login to the ldap.
> >
> > Any suggestions?
>
> Scope the login directives inside the <VirtualHost :443> section.
>
> Joshua.
>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
" from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|