André Warnier wrote:Clayton,
Eric Covener wrote:
Party pooper !So, it looks like I need mod_setenvif, right? Could anybody write a quick
directive that would look at REMOTE_USER to see if there is a backslash
("\"), and if there is, set the same variable to everything following the
backslash? I think this would solve my problem. I would rather use
mod_authnz_ldap that mod_auth_sspi as it is included with Apache and is
well-supported.
The authentication/authorization modules don't read from the
REMOTE_USER environment variable.
I kind of get a feeling that Eric is right though, because a) he usually seems to know his stuff, and b) that would not be very secure, to say the least.
That would mean that we are back to try and figure out what exactly happens between IE and the server, and it what circumstances exactly IE sends this domain\user-id thing.
But maybe Eric can help there ?
Eric, what kind of "401" does mod_authnz_ldap send to the browser when it needs authentication ? Basic ?
Then I can't quite imagine Clayton's scheme working, because IE would never of its own device send the user's password (I don't even think it knows it).
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
" from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|