Can Apache, outfitted with mod_ssl and mod_dav, satisfy the following
requirements?
A particular author's content is readable via a URL such as
http://host.fsu.edu/[author]/
where [author] is one of up to about 1,500 names.
Content is writable to that location by an HTTP-Authenticated author
using DAV (www.webdav.org). All HTTP methods other than GET, HEAD,
and OPTIONS (i.e. the methods that modify content) occur via SSL,
because those methods shall require HTTP-Authentication and the
requisite password transmission must be secure. The URL would appear
as
https://host.fsu.edu/[author]/
Each author has a staging area for content that is read-writable only
by the HTTP-Authenticated author, via a URL such as
https://host.fsu.edu/[author]/staging/
Miscellaneous:
No Unix UIDs will exist for authors (DAV requires all files to be
owned by the server process).
Is there a configuration that will satisfy all of the above?
I've tried configuring the following platform:
Apache/1.3.19 (Unix) DAV/1.0.2 mod_ssl/2.8.3 OpenSSL/0.9.6
to no avail. The main obstacle is that there appears to be no way to
instruct Apache/mod_ssl that the location http://host.fsu.edu/[author]/
is to be readable by all, yet "writable" only by the authenticated
author _via SSL_.
Thanks much for any advice.
Kingsley Kerce <[EMAIL PROTECTED]>
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
