Hi I have ldap integrated with apache what's the difference between require valid-user and require user Why when I have require valid-user, no authentication is required
thanks --- On Fri, 21/8/09, Melanie Pfefer <melanie_pfe...@yahoo.co.uk> wrote: > From: Melanie Pfefer <melanie_pfe...@yahoo.co.uk> > Subject: Re: [us...@httpd] 'require' keyword > To: users@httpd.apache.org > Date: Friday, 21 August, 2009, 4:32 PM > Hi, > > I tried to change the AuthName but I got the same behavior: > Forbidden > The methid is GET (since I am only accessing the page from > a browser): "GET /svn/ABC/XYZ/123 HTTP/1.0" 403 221 > > thanks in advance > --- On Fri, 21/8/09, André Warnier <a...@ice-sa.com> > wrote: > > > From: André Warnier <a...@ice-sa.com> > > Subject: Re: [us...@httpd] 'require' keyword > > To: users@httpd.apache.org > > Date: Friday, 21 August, 2009, 3:17 PM > > Melanie Pfefer wrote: > > > Hi > > > > > > I meant Eric's suggestion. > > > > > > But, I sent the email too fast. In fact, I am > not > > prompted for authentication when I create a new and > seperate > > location even though the Require user was put for that > new > > location. > > > > > > In fact I just noticed that I have also: > > > > > > <Location /svn/ABC/> > > > with the same ldap settings (require valid-user) > > > > > Getting back to some basics : > > With "Basic Authentication" (which is what you are > using, > > despite the fact that your back-end is an LDAP > server), the > > directive "AuthName" is important. > > Basically, any Location sections for which you use the > same > > AuthName, is considered by the server and the browser > as > > "one domain", and an authentication for one of these > > Locations is valid for all the Locations that have the > same > > AuthName. > > That is why, if a user authenticates once for a > specific > > Location that has an "Authname X", and then accesses > another > > Location that also has an "AuthName X", the user will > not be > > asked to authenticate again, and his previous > authentication > > will be "re-used". > > > > > > > --------------------------------------------------------------------- > > The official User-To-User support forum of the Apache > HTTP > > Server Project. > > See <URL:http://httpd.apache.org/userslist.html> for more > > info. > > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > > " from the digest: users-digest-unsubscr...@httpd.apache.org > > For additional commands, e-mail: users-h...@httpd.apache.org > > > > > > > > > > --------------------------------------------------------------------- > The official User-To-User support forum of the Apache HTTP > Server Project. > See <URL:http://httpd.apache.org/userslist.html> for more > info. > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > " from the digest: users-digest-unsubscr...@httpd.apache..org > For additional commands, e-mail: users-h...@httpd.apache.org > > --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
