On 7/11/06, Matthew Good [EMAIL PROTECTED] wrote:
Yes, when you configure the authentication in Apache use a Location
block that covers the whole Trac site, not just the login URL.
So, instead of:
Location /projects/login
# auth setup
Require valid-user
/Location
Use:
Location /projects
# auth
I was wondering if there is a way to protect Trac. In other words, I don't
want the outside world seeing Trac unless they can login (that includes the main
page). I want only authenticated users to be allowed to view and edit the site.
Is this possible? As of now, I am using Trac with mod_python.
Hi,
You can restrict anonymous user to only access the options that you want..
I think, other option, If you are behind some firewall is to filter
the access to the port that is used by Trac.
Esteban
On 7/11/06, [EMAIL PROTECTED] [EMAIL PROTECTED] wrote:
I was wondering if there is a way to
You can apply the authentication rule to the whole project, ie. change
the Location directive to include the project top dir:
Location /trac/project
AuthType Basic
.../...
Order deny,allow
Allow from all
/Location
# /trac
instead of
Location
On Tue, 2006-07-11 at 10:39 -0400, [EMAIL PROTECTED] wrote:
I was wondering if there is a way to protect Trac. In other words, I don't
want the outside world seeing Trac unless they can login (that includes the
main
page). I want only authenticated users to be allowed to view and edit the
On 7/11/06, Matthew Good [EMAIL PROTECTED] wrote:
Yes, when you configure the authentication in Apache use a Location
block that covers the whole Trac site, not just the login URL.
...
Location /projects
# auth setup
Require valid-user
/Location
I've been doing the same thing for a while,
On Tue, 2006-07-11 at 14:46 -0400, Clem Taylor wrote:
On 7/11/06, Matthew Good [EMAIL PROTECTED] wrote:
Yes, when you configure the authentication in Apache use a Location
block that covers the whole Trac site, not just the login URL.
...
Location /projects
# auth setup
Require
You will have to look into alternate login modules. The logout
functionality is somewhat hampered by the fact that all modern browsers
cache HTTP credentials for as long as the program is running.
--Noah
Clem Taylor wrote:
On 7/11/06, Matthew Good [EMAIL PROTECTED] wrote:
Yes, when you
I've been doing the same thing for a while, but it seems to have an
annoying side effect that the logout button stops working and you
can't logout. Any ideas how to get login to work with this
configuration?
This is due to HTTP authentication, not to the path of the 'authenticated' area.
You