LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Server (https://www.linuxquestions.org/questions/linux-server-73/)
-   -   Digest authentication not working on default Apache installation on Slackware 12.1 (https://www.linuxquestions.org/questions/linux-server-73/digest-authentication-not-working-on-default-apache-installation-on-slackware-12-1-a-730785/)

Stuart P. Bentley 06-04-2009 08:52 PM

Digest authentication not working on default Apache installation on Slackware 12.1
 
Why is this working:
Code:

<Location /repo>
    DAV svn
    SVNPath /srv/repo

    AuthType Basic
    AuthName "NONE SHALL PASS"
    AuthDigestDomain /repo
    AuthUserFile /srv/auth/svn-auth-basic-file
    #AuthUserFile /srv/auth/svn-auth-digest

    Require valid-user
    #Allow users of a certain authentication level read-only access
    AuthzSVNAccessFile /srv/auth/svn-access-file

    #WebDAV accessibility settings
    SVNAutoversioning on
    ModMimeUsePathInfo on
</Location>

but this isn't?
Code:

<Location /repo>
    DAV svn
    SVNPath /srv/repo

    AuthType Digest
    AuthName "NONE SHALL PASS"
    AuthDigestDomain /repo
    #AuthUserFile /srv/auth/svn-auth-basic-file
    AuthUserFile /srv/auth/svn-auth-digest

    Require valid-user
    #Allow users of a certain authentication level read-only access
    AuthzSVNAccessFile /srv/auth/svn-access-file

    #WebDAV accessibility settings
    SVNAutoversioning on
    ModMimeUsePathInfo on
</Location>

Could my digest file be bad? Is there a rule for what to put in for realm? Also, the server is operating with 127.0.0.1 for ServerName.

bmarx 06-06-2009 12:39 PM

Try using AuthDigestFile as opposed to AuthUserFile (and htdigest as opposed to htpasswd):

http://httpd.apache.org/docs/1.3/howto/auth.html#digest

Stuart P. Bentley 06-07-2009 06:55 AM

Quote:

Originally Posted by bmarx (Post 3565330)
Try using AuthDigestFile as opposed to AuthUserFile (and htdigest as opposed to htpasswd):

http://httpd.apache.org/docs/1.3/howto/auth.html#digest

I used htdigest for svn-auth-digest, and the example on http://httpd.apache.org/docs/2.2/mod...th_digest.html uses AuthUserFile: putting AuthDigestFile instead of AuthUserFile causes Apache 2.2 to throw up an error with AuthDigestFile as an unrecognized keyword on restart.

httpd -v:
Code:

Server version: Apache/2.2.8 (Unix)
Server built:  Feb 14 2008 15:37:26


Stuart P. Bentley 06-08-2009 03:33 PM

It appears that Digest authentication only looks for users with a realm matching AuthName. Why isn't this documented anywhere?


All times are GMT -5. The time now is 05:39 AM.