Hi,Authentification is configured by PHP, it send to the browser required headers in order to provide authentification :
header("WWW-Authenticate: Basic realm=\"Realm\"");
header("HTTP/1.0 401 Unauthorized");
For the CGI, it is called in Apache CONF as following :
AddHandler cgi-php5 .php5 .php
Action cgi-php5 /php5/php5-cgi
SuexecUserGroup <existing_user> users
where /php5/php5-cgi is the executable compiled CGI PHP and
<existing_user> is an non privilegied user of the unix system.
So the PHP (CGI) script is executed with <existing_user> privilege.The authentification mechanism is OK, I login in the CGI script perfectly with credential titi:toto but logs'apache don't indicate titi as %<u (LogFormat)
Thanks, Joshua Slive a écrit :
On 8/3/07, apache.org@xxxxxxxxxxx <apache.org@xxxxxxxxxxx> wrote:Hello, According to my previous post on the bug track: http://issues.apache.org/bugzilla/show_bug.cgi?id=43018 This is a script in PHP that is called by the a CGI handler in Apache. HTTP Authentification.Your problem is very hard to decipher. Exactly how is authentication configured, and exactly how is your CGI called? Joshua. --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
--------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|