On 21/05/2013 14:14, Vincenzo D'Amore wrote:
Hi Miguel,
when you get authenticated with test1 user, may be your server returns
an html page that have more resources inside (i mean css, js, img),
and very likely, some of them are into the root Realm. This could
explain why you get prompted
Dear all,
I've been googling around and I haven't been able to find an answer
for this.
I have a web based software (Munin) which is password protected in
its root folder (my master user and password). However, since it
generates subfolders for each server and fill them with html files
Hi Miguel,
yes it is possible, you could add a couple of file in each directory
(.htaccess and .htpasswd).
Those files should override the root authentication configuration with a
new local config.
I suggest to read here how to implement such configuration:
Le 21/05/2013 à 11:07, Vincenzo D'Amore a écrit :
Hi Miguel,
yes it is possible, you could add a couple of file in each directory
(.htaccess and .htpasswd).
Those files should override the root authentication configuration with a
new local config.
I suggest to read here how to implement
Hi Bruno,
may be you're right, I read long time ago, but actually don't remember
exactly the RFC.
So now I have just implemented such configuration with Apache 2.2.
Into the document root I have created a .htaccess with this configuration:
AuthType Basic
AuthName Root Restricted Files
Hi Bruno,
just read again the RFC you stated, I'm not sure about the assumption that
a realm can be contained within another.
Or may be the implementation done by Apache httpd cannot support multiple
nested realms.
As far as I see, you can define just one Realm that, eventually, override
the
Le 21/05/2013 à 12:51, Vincenzo D'Amore a écrit :
Hi Bruno,
Hi again Vincenzo,
just read again the RFC you stated, I'm not sure about the assumption
that a realm can be contained within another.
Or may be the implementation done by Apache httpd cannot support
multiple nested realms.
As
On 21/05/2013 12:27, Vincenzo D'Amore wrote:
Hi Bruno,
may be you're right, I read long time ago, but actually don't remember
exactly the RFC.
So now I have just implemented such configuration with Apache 2.2.
Into the document root I have created a .htaccess with this configuration:
Hi Miguel,
when you get authenticated with test1 user, may be your server returns an
html page that have more resources inside (i mean css, js, img), and very
likely, some of them are into the root Realm. This could explain why you
get prompted for the root password too.
Best,
Vincenzo
Hi Bruno,
As long as there's only one Authorization header, the client doesn't
need to specify a realm, as the server knows what realm the access
resource belongs to. But you're right in your analysis: the fact that
the realm isn't specified in the client request makes it highly probable
that
10 matches
Mail list logo
