On Mon, 8 Jan 2007 17:37:54 +0100
"Sylvain Perrot" <[EMAIL PROTECTED]> wrote:
> First, As I am new to modperl development, I would like to validate my
> configuration :)
> As I understood, PerlAuthenHandler and PerlAuthzHandler are working in
> parallel, and the first who give back a OK wins ...
It's not in parallel, it's in order. PerlAccessHandler, then
PelrAuthenHandler, then PerlAuthzHandler.
The best way to think about it is like this:
PerlAccessHandler ----> is this IP allowed?
PerlAuthenHandler ----> is this username allowed?
PerlAuthzHandler ----> is this group allowed?
> Next, if I try to access to any protectedResource behind the URL
> http://www.domain.tld/protectedResource/page.aspx, The protection is
> working fine !
>
> But, as soon I want to access to a web service (for example, a Flash
> application which shoud access to WebService in the protected
> Resources), I've got a problem :
> The security check is correctly done, but the returned content type is
> modified from text/xml to text/html (I checked the HTTP Header using
> "Live HTTP Headers" in FireFox.
>
> The problem is that the Web Service WSDL is not returned at all when
> it is accessed behing a protected area (so, though my perl
> modules) ... But it is working fine when I de-activate the
> PerlAuthenHandler/PerlAuthzHandler mechanism.
> (this is my problem, since Flash required the access to the WSDL)
>
> Do you have any idea about my problem ???
Ok I'm confused, you say it works then it doesn't, but then it
does if you turn off your auth?
Is the problem that the content type changes or what?
---------------------------------
Frank Wiles <[EMAIL PROTECTED]>
http://www.wiles.org
---------------------------------
