.htpasswd and .htaccess password problems
Web Server forum
Back To The Forum Home!Search!Private Messaging System
Visit your User Control Panel!Register your FREE username now!Visit Our Calendar!View the Member List!Faqs!Search our Forums!

Web Server Talk Web Server Talk > Web Servers reviews > Apache Server configuration support > .htpasswd and .htaccess password problems




  Last Thread   Next Thread Next
  Show Printable Version Email this Page Subscribe to this Thread      Post New Thread    Post A Reply      

    .htpasswd and .htaccess password problems  
jmroach


View Ip Address Report This Message To A Moderator Edit/Delete Message


 
02-26-06 04:24 PM

Ok, i have tried a ton of stuff, but can't seem to get password
protection working on a website.

here's what i have so far:

/Library/WebServer/Documents/web/.htaccess
---
AuthName "Login"
AuthType Basic
AuthUserFile /Library/WebServer/Documents/.htpasswd
AuthGroupfile /dev/null
require user friends
---

/Library/WebServer/Documents/.htpasswd
---
friends:MSg7LpjK8YMIg
---

httpd.conf
---
...
<Directory /Library/WebServer/Documents/web>
AllowOverride All
</Directory>
...
---

jmroach.conf (which is also being read for some reason when i start
apache)
---
<Directory "/Library/WebServer/Documents">
AllowOverride All
</Directory>

AccessFileName .htaccess
---

apachectl start yields:

Processing config directory: /private/etc/httpd/users/*.conf
Processing config file: /private/etc/httpd/users/jmroach.conf

i have edited all .conf files there (and grep'd to make sure) with:
AllowOverride All

I get no popup window asking for a password at any point.  I should get
one when i try to access webpages located in ".../web", right?

any help on this would be greatly appreciated as i'm frusterated as
hell!

thanks,

-john




[ Post a follow-up to this message ]



    Re: .htpasswd and .htaccess password problems  
Robert Ionescu


View Ip Address Report This Message To A Moderator Edit/Delete Message


 
02-26-06 04:24 PM

jmroach wrote:
> httpd.conf
> ---
> ....
> <Directory /Library/WebServer/Documents/web>

Why don't you place your directives here inside this directory section
rater than using .htaccess files? Placing directives into the httpd.conf
is more efficient than checking and reading .htaccess files for each
request.

> AllowOverride All

Which means that now every module, which allows overriding directives in
.htaccess files, will check for .htaccess files. I don't understand
(from the performance point of view) why .htaccess files should be
preferred, if you can access the server config files...

> I get no popup window asking for a password at any point.  I should get
> one when i try to access webpages located in ".../web", right?

The directives seems to be fine (but I would remove AuthGroupfile since
it's unused), and you don't have any 'Satisfy any' or ErrorDocument 401
http://example.com/some/file in place?
You must use
ErrorDocument 401 /some/file
instead, otherwise a 302 redirect but not a 401 authorization header
would be sent.

--
Robert




[ Post a follow-up to this message ]



    Sponsored Links  




 



   All times are GMT. The time now is 11:41 PM.      Post New Thread    Post A Reply      
  Last Thread   Next Thread Next


Most Popular forums 
Apache Server MySQL for Windows Sendmail
Red Hat Networking SuSe Linux Debian Linux
FreeBSD administration Sun Solaris administration Unix Shell programming
WebSphere Portal Server Exchange 2000 administration PostgreSQL administration
Linux Security Computer Security Firewalls

Forum Jump:
Rate This Thread:

Forum Rules:
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts 		HTML code is OFF
vB code is ON
Smilies are ON
[IMG] code is OFF
 
Medical and Health forum | Computer Games Reviews | Graphics design forum

Back To The Top
Home | Usercp | Faq | Register