apache auth

**countach44** · 07-02-2004, 04:01 AM

I keep getting a 403 when I try to go to any of my password protected folder, one is done with .htaccess, and one is done in the httpd.conf, here's the content of my .htaccess:

Code:

AuthUserFile $file
AuthGroupFile /dev/null
AuthName Password
AuthType Basic

require valid-user

the folder is 750: nobody:users (apache runs as nobody, I plan on changing this to "apache&quot

the other one looks like this

Code:

&lt;Directory &quot;$name&quot;&gt;
    Options FollowSymLinks
    AuthType Basic
    AuthName &quot;If you&#039;re not me, get out&quot;
    AuthUserFile &quot;$passfile&quot;
    Require valid-user
&lt;/Directory&gt;

With same permissions.
I read somewhere that chmodding to 750 fixes this, but it didn't for me.
Thanks.

**Compunuts** · 07-03-2004, 08:09 PM

A few comments ...

With .htaccess file, you need this directive.

Code:

 AllowOverride AuthConfig

Did you create user's password file? And place it other than root directory of Apache? Like so ...

Code:

 htpasswd -c /usr/local/apache/passwd/passwords countach44

Where the countach44 is the name that you will have to put in to have access to that directory.

Also, give explicit file location ( for ease of use ) instead of using short file names like

Code:

AuthUserFile &quot;/usr/local/apache/$passfile&quot;

Instead of

Code:

AuthUserFile &quot;$passfile&quot;

You also need to explicitly define what user you are going to allow to have access to the directory.
For example;

Code:

require user countach44

HTH ...
P.S --> The above are for apache 2.0.

**countach44** · 07-04-2004, 04:57 AM

I'm using apache 1.3 series, and I've done all of that... Also, whenever I try to list any directory (by just going to that directory) it gives me 403, I've been looking, but I can't remember how to change it to allow directory viewing.
Thanks

**Compunuts** · 07-04-2004, 07:10 AM

[quote author=Corrupt Countach44 link=board=4;threadid=9451;start=0#msg85780 date=1088917036]
how to change it to allow directory viewing.
[/quote]
It's controlled by mod_autoindex. Hereis more info for the directive setting

**Compunuts** · 07-04-2004, 07:18 AM

[quote author=Corrupt Countach44 link=board=4;threadid=9451;start=0#msg85678 date=1088740899]
here's the content of my .htaccess:

Code:

require valid-user

the other one looks like this

Code:

&lt;Directory &quot;$name&quot;&gt;
    Require valid-user
&lt;/Directory&gt;

[/quote]
It's not sufficient to have only that "valid-user". You need to specify specific users for whom it's allowed.

I read somewhere that chmodding to 750 fixes this

As I recall, it's 640.

Thread: apache auth

Thread Tools

Display

Hybrid View

apache auth

Re:apache auth

Re:apache auth

Re:apache auth

Re:apache auth

Similar Threads

LDAP auth with apache on FC5 & FC6

Taverna Workbench 1.3.1

is apache in fedora core3??!!

apache auth

Apache error: could not open dbm (type GDBM) auth file

Bookmarks

Bookmarks

Posting Permissions