|
Home > Archive > Web Servers General Talk > January 2004 > Apache and Access log
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Apache and Access log
|
|
|
| I have my access log setup to log username, but it is not. Currently,
I am not using http authentication. I have a third party software
installed for managing the access to my web pages. But, I am assuming
that since I am using this software that Apache cannot pull the
username properly.
Can anyone confirm that the username is only able to be pulled when
you are using basic authentication with Apache. Any access control
software will cause that entry to be blank.
If anyone knows what needs to be done or could explain better how this
is being pulled so I can adjust my third party software, I would
appreciate it.
But, my main concern is verifying that only basic http authentication
will provide the username.
Thanks,
Jamie
| |
| Michael Vilain 2004-01-19, 6:31 am |
| In article <150b5d15.0310061054.6469a888@posting.google.com>,
jc_tweak@comcast.net (Jamie) wrote:
quote:
> I have my access log setup to log username, but it is not. Currently,
> I am not using http authentication. I have a third party software
> installed for managing the access to my web pages. But, I am assuming
> that since I am using this software that Apache cannot pull the
> username properly.
>
> Can anyone confirm that the username is only able to be pulled when
> you are using basic authentication with Apache. Any access control
> software will cause that entry to be blank.
>
> If anyone knows what needs to be done or could explain better how this
> is being pulled so I can adjust my third party software, I would
> appreciate it.
>
> But, my main concern is verifying that only basic http authentication
> will provide the username.
Write an Apache module to do the authentication using the 3rd-party
software and plug the username into Apache. Or switch to mod_auth
authentication.
--
DeeDee, don't press that button! DeeDee! NO! Dee...
| |
| Klaus Johannes Rusch 2004-01-19, 6:31 am |
| Jamie wrote:
quote:
> If anyone knows what needs to be done or could explain better how this
> is being pulled so I can adjust my third party software, I would
> appreciate it.
Apache can log the value of custom environment variables, if you can get
the third party software to set an environment variable (or this runs in
proxy mode, a header value) you can log that.
Regards
--
Klaus Johannes Rusch
KlausRusch@atmedia.net
http://www.atmedia.net/KlausRusch/
| |
| Joshua Slive 2004-01-19, 6:31 am |
| jc_tweak@comcast.net (Jamie) wrote in message news:<150b5d15.0310061054.6469a888@posting.google.com>...
quote:
> Can anyone confirm that the username is only able to be pulled when
> you are using basic authentication with Apache. Any access control
> software will cause that entry to be blank.
Yes. That's true.
quote:
>
> If anyone knows what needs to be done or could explain better how this
> is being pulled so I can adjust my third party software, I would
> appreciate it.
Unlikely. Your software is probably using some kind of cookie-based auth
that could not be easily converted to basic auth.
Alternatives:
- Log the cookie in the logfile rather than REMOTE_USER.
- Have the third-party software set some kind of variable
or note that apache can log. Since I know nothing of your
software, I can't be specific.
Joshua.
| |
| Joe Blow 2004-01-19, 6:31 am |
| jc_tweak@comcast.net (Jamie) wrote in message news:<150b5d15.0310061054.6469a888@posting.google.com>...quote:
> I have my access log setup to log username, but it is not. Currently,
> I am not using http authentication. I have a third party software
> installed for managing the access to my web pages. But, I am assuming
> that since I am using this software that Apache cannot pull the
> username properly.
>
> Can anyone confirm that the username is only able to be pulled when
> you are using basic authentication with Apache. Any access control
> software will cause that entry to be blank.
>
> If anyone knows what needs to be done or could explain better how this
> is being pulled so I can adjust my third party software, I would
> appreciate it.
>
> But, my main concern is verifying that only basic http authentication
> will provide the username.
>
> Thanks,
>
> Jamie
My understanding is that %l logs the remote username (from identd on
the remote server, if running), and that %u logs the username from
basic auth. These two values are not related to each other.
Your assumption is probably correct from a practical point of view,
since the %l value is probably not generally available.
I don't know how Apache would work in conjunction with the 3rd party
software you are using, but maybe you could configure the 3rd party
software to use Apache's basic auth.
|
|
|
|
|