Putting the authentication directives inside the <VirtualHost :443> section worked. Thanks very much.
Diana Shepard University of Colorado > -----Original Message----- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of > Joshua Slive > Sent: Monday, December 19, 2005 5:58 PM > To: users@httpd.apache.org > Subject: Re: [EMAIL PROTECTED] https RewriteRule before authentication > > On 12/19/05, Diana Shepard <[EMAIL PROTECTED]> wrote: > > > > > > I am running Apache 2.0.53 on Sun Solaris 9. > > > > I am trying to force the use of https for a particular web site. > > I've done: > > > > > > <VirtualHost *:80> > > ServerName www.somewhere.com > > RewriteEngine On > > RewriteCond %{REQUEST_URI} /somestring/ RewriteRule ^(.*)$ > > https://www.somewhere.com/$1 </VirtualHost> > > > > The problem is that the user must first be authenticated against an > > ldap and that password authentication happens before the redirect; > > defeats the whole purpose. The purpose is to encrypt the > login to the ldap. > > > > Any suggestions? > > Scope the login directives inside the <VirtualHost :443> section. > > Joshua. > --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]