On Sat, 2009-01-17 at 12:11 -0800, Grant wrote: > I have a Location block requiring AuthType Basic in my default vhost > and default SSL vhost. The problem is that I seem to need to > authenticate twice, once when I hit the first HTTP page and again when > I hit the first HTTPS page, even though the username and password are > the same. Can I have the login for one apply to both? No, I know that at least Firefox adopts the safe policy of treating http://DOMAIN and https://DOMAIN as completely separate for security purposes (HTTP authentication, password manager, and JavaScript). I suggest that you just use HTTPS for everything. -- Matt --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|