I believe your ProxyPassReverseCookieDomain is the reverse of what it should be
You should have something like ProxyPass /blah http://privateserver/ ProxyPassReverse /blah http://privateserver/ ProxyPassReverseCookieDomain .public.domain .private.domain Forget about ProxyPassReverseCookiePath. You do not seem to need it. Had you provided a complete trace from LiveHTTPHeaders, or at least the headers, we would have been able to provide a more accurate answer. I do believe, however, that your problem is with ProxyPassReverseCookieDomain. You need to know the value of the Host header the browser sends to publicserver, and the entire values of the Cookie headers in the responses from privateserver. Then the correct directive should be: ProxyPassReverseCookieDomain <domain from the host header in request> <domain from cookie response header as sent by privateserver> -ascs -----Original Message----- From: Frederick, Fabian [mailto:[EMAIL PROTECTED] Sent: Friday, December 16, 2005 3:51 PM To: users@httpd.apache.org Subject: RE: [EMAIL PROTECTED] ProxyPassReverseCookieDomain It seems private server is giving 302 : Livehttpheaders gives http/1.x 302 object moved Server : privateserver httpd version Content-length:149 Content-type:text/html Location : https://publicserver X-powered-by:private server The only difference between private server direct interrogation and public server (when authentification is done) is the Fact that GET has no cookie attribute when using public one ... Meanwhile, working directly on private server, each request has Cookie : session-id ... So proxypass works, proxypassreverse works, proxypassreversecookie works ... But browser don't send back a cookie to publicserver as that cookie seems 'attached' to private server ... I declared ProxyPassReverseCookieDomain and ProxyPassReverseCookiePath ProxyPassReverseCookieDomain privateIP publicIP ProxyPassReverseCookiePath / / Regards, Fabian --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
