Rob - thanks for your response. The relevant part of my http.conf is below. The only thing I see maybe as different is my dev2Path line - my goal is to protect the location /directory and and .pl files. Is that line right? Also, you have a PerlSetVar SecretKey line that does not show up in my perldocs. (module v 1.19)
Thanks - GV #----------------------------------------------------- [snip previous virtualhost stuff...] </VirtualHost> PerlSetVar dev2DBI_SecretKeyFile /home/websites/dev2/signmanage/secretkey PerlSetVar dev2Path / PerlSetVar dev2LoginScript /signmanage/login.pl PerlSetVar dev2DBI_DSN "dbi:Pg:dbname=users" PerlSetVar dev2DBI_User "someone" PerlModule Apache::AuthCookieDBI <VirtualHost dev2> DocumentRoot /home/websites/dev2 ServerName dev2.gimsnetwork.com DirectoryIndex index.html <Location /protected> AuthName dev2 AuthType Apache::AuthCookieDBI PerlAuthenHandler Apache::AuthCookieDBI->authenticate PerlAuthzHandler Apache::AuthCookieDBI->authorize Require valid-user </Location> <FilesMatch "\.pl$"> AuthName dev2 AuthType Apache::AuthCookieDBI PerlAuthenHandler Apache::AuthCookieDBI->authenticate PerlAuthzHandler Apache::AuthCookieDBI->authorize Require valid-user SetHandler perl-script PerlHandler Apache::Registry PerlSendHeader On Options +ExecCGI </FilesMatch> # This is the action of the login.pl script above. <Files LOGIN> AuthType Apache::AuthCookieDBI AuthName dev2 SetHandler perl-script PerlHandler Apache::AuthCookieDBI->login </Files> At 03:47 PM 10/16/2002 -0700, Rob Bloodgood wrote: >> -----Original Message----- >> From: George Valpak [mailto:[EMAIL PROTECTED]] >> Sent: Wednesday, October 16, 2002 3:26 PM >> To: Vegard Vesterheim >> Cc: [EMAIL PROTECTED] >> Subject: Re: AuthCookieDBI help please.... (more info) >> >> >> I am still having trouble with Apache::AuthCookieDBI. >> >> I tried moving the PerlSetVar line out of the virtual server to >> the main server but nothing in the behavior changed. >> >> Is it possible that the "Apache->server->dir_config()" code is >> somehow wrong? > >Move ALL mention of the AuthCookieDBI directives OUT of any Directory, >Location, or VirtualServer blocks. Define the secret key PerlSetVar BEFORE >loading PerlModule directive. > >The relevant section of my server config looks like this: ># These must be set >PerlSetVar AdminDBI_DSN "dbi:Oracle:STATS" >PerlSetVar AdminDBI_SecretKeyFile /etc/httpd/conf/sercret.key >PerlSetVar AdminDBI_SecretKey "XXXXXXX" > ># moved BELOW AdminDBI_SecretKeyFile so the directive is available at ># BEGIN{} time >PerlModule Apache::AuthCookieDBI >PerlSetVar AdminPath /admin >PerlSetVar AdminLoginScript /scripts/adminlogin.pl >#PerlSetVar AdminLoginScript /error/adminlogin.html > >## more directives here > >Hope this helps! > >L8r, >Rob > >#!/usr/bin/perl -w >use Disclaimer qw/:standard/;