Instead of the 302 redirect, give a 400 responce, and a meta-refresh
tag. <meta http-equiv="refresh" content="0;url=http://zzz.com/";>
I'll need to modify a local copy of Apache2::AuthCookie to do this, but
I wondered if there are other solutions out there for this problem.
Well, I'm not using Apache2::AuthCookie, but this site doesn't get that.
[test site, test ssl certificate thats expired]
http://isst.p6m7g8.net/timeline
non ssl vhost
RewriteRule ^/timeline/login https://%{SERVER_NAME}/timeline/login [L,R]
ssl host (can't vhost ssl)
RewriteRule ^/timeline/intro http://%{SERVER_NAME}/timeline/intro [L,R]
In the first handler /login which is served from the ssl server after a
redirect from the non-ssl via mod_rewrite:
#mp2
use Apache2::RequestRec ();
use Apache2::Const -compile => qw(OK);
#libapreq
use APR::Request ();
use APR::Request::Apache2 ();
use APR::Request::Cookie ();
sub handler {
my $r = shift;
my $req = APR::Request::Apache2->handle($r);
[....]
my $cookie = APR::Request::Cookie->new(
$r->pool,
name => "login",
value => $encrypted_credentials,
path => ISST::Const::URL_BASE,
domain => ISST::Const::COOKIE_DOMAIN
);
$r->err_headers_out->add('Set-Cookie' => $cookie->as_string);
$r->headers_out->set(Location => ISST::Const::URL_INTRO);
eturn Apache2::Const::REDIRECT;
}
HTH
------------------------------------------------------------------------
Philip M. Gollucci ([EMAIL PROTECTED]) 323.219.4708
Consultant / http://p6m7g8.net/Resume/resume.shtml
Senior Software Engineer - TicketMaster - http://ticketmaster.com
1024D/A79997FA F357 0FDD 2301 6296 690F 6A47 D55A 7172 A799 97F
"It takes a minute to have a crush on someone, an hour to like someone,
and a day to love someone, but it takes a lifetime to forget someone..."
