On 13/03/2004, at 11:08 AM, Elizabeth Cortell wrote:
I have a question for experienced Apache::AuthCookie users. The module's test suite protects directories below the docroot and sets the action of the login form to /LOGIN, an unprotected location. This setup does not work for me as I need to protect the entire docroot. Since LOGIN itself is protected, the login method is never called and I never progress past the login screen.
Could someone suggest a configuration that would permit LOGIN to invoke Apache::AuthCookie->login correctly but still protect the entire docroot?
Are you currently using <Location> or <Directory> tags to configure protection for the main body
of your content?
I'm having the same problem.
I'm using this as the <Location> and <Files> directives as follows:
<Location /> AuthType TestCookie::AuthCookieHandler AuthName TestCookie PerlAuthenHandler TestCookie::AuthCookieHandler->authenticate PerlAuthzHandler TestCookie::AuthCookieHandler->authorize Require user programer Options +ExecCGI allow from all </Location>
<Location /LOGIN> AuthType TestCookie::AuthCookieHandler AuthName TestCookie SetHandler perl-script PerlHandler TestCookie::AuthCookieHandler->login </Location>
and all of this is within a <VirtualHost> container.
( I never saw a response to the list, and I'm abandoning my use of Apache::AuthCookieDBI because I can't get it configured correctly. I did post to the list for assistance, but no responses ... )
--brian
-- Report problems: http://perl.apache.org/bugs/ Mail list info: http://perl.apache.org/maillist/modperl.html List etiquette: http://perl.apache.org/maillist/email-etiquette.html
