Hi, I am trying to develop a secured Reverse Proxy which use the PerlAuthenHandler/PerlAuthzHandler to accept or reject the connection.
The synoptic is the following: CLIENT -> RP (linux, apache2, modperl) -> Windows Server (.Net Application, .Net Web Service) My RP configuration is the following : <VirtualHost *:80> ServerAdmin [EMAIL PROTECTED] ServerName www.domain.tld ProxyPreserveHost On ProxyPass / http://ip:port/ ProxyPassReverse / http://ip:port/ <LocationMatch /(?i)protectedResource> PerlAuthenHandler Apache2::myAuthzModule PerlAuthzHandler Apache2::myAuthzModule Require foobar </LocationMatch> </VirtualHost> The root of the Reverse Proxy URL is not protected but when any request is done regarding the protectedResource, myAuthzModule is taking care about checking if access is granted. The module myAuthzModule is checking if the user is correctly authenticated to allow the access to the resources (return Apache2::Const::OK) else it returns a HTTP 302 Code to redirect the user to the login page. First, As I am new to modperl development, I would like to validate my configuration :) As I understood, PerlAuthenHandler and PerlAuthzHandler are working in parallel, and the first who give back a OK wins ... Next, if I try to access to any protectedResource behind the URL http://www.domain.tld/protectedResource/page.aspx, The protection is working fine ! But, as soon I want to access to a web service (for example, a Flash application which shoud access to WebService in the protected Resources), I've got a problem : The security check is correctly done, but the returned content type is modified from text/xml to text/html (I checked the HTTP Header using "Live HTTP Headers" in FireFox. The problem is that the Web Service WSDL is not returned at all when it is accessed behing a protected area (so, though my perl modules) ... But it is working fine when I de-activate the PerlAuthenHandler/PerlAuthzHandler mechanism. (this is my problem, since Flash required the access to the WSDL) Do you have any idea about my problem ??? Best regards Sylvain
