RewriteCond not working

I think there is something obvious that I've overlooked, in relation to restricting access to a particular reports.php file, via the RewriteCond directive

The public URL is:
http://www.user-viewed-domain.com/ph...in/reports.php
(although just http://www.user-viewed-domain.com/phone would be better)

This is intended to be rewritten to:
http://www.source-server-domain.com:...in/reports.php


But, once the RewriteCond directive is added, browsing to
http://www.user-viewed-domain.com/ph...in/reports.php advises that
"The requested URL /phone/admin/config.php was not found on this server"
(http://www.source-server-domain.com:...min/config.php is the default page)

Rewriting does occur successfully, without the RewriteCond directive

This is the relevant section in httpd.conf:

Code:

<Directory /var/www/phone/>
	 AllowOverride                  None
      	 Options                        FollowSymlinks
        Order          Allow,Deny
        Allow          From all
        RewriteEngine                  On
        RewriteBase                    /phone

RewriteCond %{REQUEST_URI} ^(.*)reports\.php$ # the RewriteRule directive does work without this directive
RewriteCond  %{REQUEST_FILENAME} !-f  # tried this to stop 'File does not exist' messages ie /var/www/phone/admin, referer: http://www.viewed-domain.com/phone/admin/reports.php, does not exist
RewriteRule  ^(.*)$      http://www.source-server-domain:88/$1	[QSA,P]

       ProxyPassReverseCookieDomain   www.source-server-domain.com:88        www.user-viewed-domain.com
       ProxyPassReverseCookiePath     /                             /phone

</Directory>

/var/www/phone has a .htaccess file with:

Code:

DirectoryIndex index.html index.htm reports.php config.php
Options +Indexes

Anyway, hoping someone can shed some light on this

Your rewrite should work if it's in httpd.conf. Are you sure you've restarted apache and cleared your browser cache before testing?
Please not hat you have:

Quote:

AllowOverride None

With this setting whatever is in a .htaccess will not take effect

Regards

Hi
I enabled the rewrite log and discovered there are other required directories, that may not be covered by the directive to limit to:
'/admin/reports.php' and result in matching problems, eg from the rewrite.log

Code:

[perdir /var/www/phone/] strip per-dir prefix: /var/www/phone/admin/common/mainstyle.css -> admin/common/mainstyle.css
[perdir /var/www/phone/] RewriteCond: input='/phone/admin/common/mainstyle.css' pattern='^(.*)(reports\.php)$' => not-matched
[perdir /var/www/phone/] pass through /var/www/phone/admin

What can I do?
Compused

If you want to redirect everything under /phone/admin to the other server, change the RewriteCond to

Code:

RewriteCond %{REQUEST_URI} ^/phone/admin
...

Regards

Thanks a lot...that helps
I have tried:

Code:

RewriteCond %{REQUEST_URI} ^/phone/admin/(reports|config|images|common)

to further restrict accessibility to /phone/admin/reports.php only, but I want to stop direct access to:
/phone/admin/config.php
other than when first accessed via /phone/admin/reports.php
(totally blocking access to the config.php stops access to /phone/admin/reports.php)

Compused=1

Use HTTP_REFERER like:

Code:

RewriteCond %{HTTP_REFERER} !http://www.domain.com/phone/admin/reports.php
RewriteRule ^phone/admin/config.php - [F]

Thanks
HTTP_REFERRER would be an elegant solution but I can't get it to work; the RewriteRule, ie
RewriteRule ^phone/admin/config.php - [F]
might be causing problems as .../phone/admin/config.php only exists on the machine the browser is meant to be redirected to

Compfused

Quote:

Originally Posted by compused Thanks HTTP_REFERRER would be an elegant solution but I can't get it to work; the RewriteRule, ie RewriteRule ^phone/admin/config.php - [F] might be causing problems as .../phone/admin/config.php only exists on the machine the browser is meant to be redirected to Compfused

Did you try it?
I guess it should work, as the RewriteCond checks the referer and forbids parsing if it/s not the correct one. If the referer is correct, the rewrite to the backend should happen:

Code:

RewriteCond %{HTTP_REFERER} !http://www.domain.com/phone/admin/reports.php
RewriteRule ^phone/admin/config.php - [F]
RewriteRule ^phone/admin/config.php http://www.source-server-domain:88/$1

Attn: It's HTTP_REFERER (with one "R"), not HTTP_REFERRER

Hi...HTTP_REFERER will not restrict access as advertised. Cannot find any clues in the rewrite logs. Php.ini seems to be properly configured to send http_referer information.

Some promise seems to be in:

Code:

 RewriteCond %{REQUEST_URI} ^/phone/admin/(reports|config|images|common) #'images' and 'common' are required dirs
 RewriteRule         ^(.*)$		http://www.second-domain.com/$1	[QSA,P]

if...there is a way to make 'config' conditional on 'reports' having been prior requested??

Compfused

Quote:

Hi...HTTP_REFERER will not restrict access as advertised. Cannot find any clues in the rewrite logs. ... if...there is a way to make 'config' conditional on 'reports' having been prior requested??

HTTP_REFERER is your way to do what you want.
It should work if the actual referer is the one used in the RewriteCond. Use the following to log what mod_rewrite does:

Code:

RewriteLogLevel 9
RewriteLog logs/rewrite_log