[BlueOnyx:04038] Re: .htaccess again

Rickard Osser rickard.osser at bluapp.com
Wed Mar 17 09:15:34 -05 2010 

Hi!

I've been doing a mod_authnz_external re-visit the last 2 days and I've
come to the following conclusion:

1, 	The directive "AuthAuthoritative on" which is in the readme 
	file is not correct, it's not used in Apache 2.2 at all.
2,	The dirctive "AuthBasicProvider external" need to be in 
	the .htaccess file, otherwise it doesn't work.
3,	For authenticating a user the following works:

AuthType Basic
Authname "Don't go here if!!!"
AuthBasicProvider external
AuthExternal pwauth
Require valid-user

4,	For authenticating users in a group/site the following works:

AuthType Basic
Authname "Don't go here if!!!"
AuthBasicProvider external
AuthExternal pwauth
GroupExternal unixgroup
Require group site10

	Remember to remove "Require valid-user" if you want group 
	auth...

Best regards,

Rickard

On Wed, 2010-01-20 at 19:31 +0100, Peter Blaser wrote:
> Thanks Michael for keep going on on this.
> Unfortunately I'didn't have time myself to find the right solution.
> On our boxes we use .htaccess files according with locally .htpasswd
> configuration.
> 
> Peter
> 
> 2010/1/13 Michael Stauber <mstauber at blueonyx.it>
>         Hi Greg,
>         
>         > From what I can see at the moment, mod_authnz_external
>         appears to be
>         > unreliable .... Michael: Have you considered going back to
>         > mod_auth_external instead? I am considering this as a
>         potential solution
>         > for a number of people at the moment.... but I'd prefer to
>         stay with the
>         > main blueonyx architecture if possible.
>         
>         
>         Afaik mod_auth_external works for Apache 2.0, but not 2.2.
>         That's what
>         mod_authnz_external is for. Am still puzzled why it works on
>         some boxes and
>         not on others. It's probably just a simple permission hunch
>         that got broken
>         during one YUM update or other.
>         
>         Am still looking into this.
>         
>         On a box where I needed .htaccess directory protection with
>         passwords myself
>         I'm now using "mod_auth_mysql" (get it through YUM) on the
>         interim.
>         
>         Once installed,
>         check /usr/share/doc/mod_auth_mysql-3.0.0/CONFIGURE for usage
>         examples and how your MySQL table has to look. You can have
>         this up and
>         running in 10-15 minutes of fiddling if need be.
>         
>         --
>         With best regards
>         
>         Michael Stauber
>         
>         _______________________________________________
>         
>         
>         Blueonyx mailing list
>         Blueonyx at blueonyx.it
>         http://www.blueonyx.it/mailman/listinfo/blueonyx
>         
> 
> _______________________________________________
> Blueonyx mailing list
> Blueonyx at blueonyx.it
> http://www.blueonyx.it/mailman/listinfo/blueonyx



________________________________________________________________________

Bluapp AB
Rickard Osser
CTO
Solberga Ängsväg 3
125 44 Älvsjö
Sweden

Web: http://www.bluapp.com
Mail: rickard.osser at bluapp.com

More information about the Blueonyx mailing list