>Number: 2733
>Category: general
>Synopsis: .htaccess file ignored
>Confidential: no
>Severity: serious
>Priority: medium
>Responsible: apache
>State: open
>Class: sw-bug
>Submitter-Id: apache
>Arrival-Date: Tue Jul 28 16:10:02 PDT 1998
>Last-Modified:
>Originator: [EMAIL PROTECTED]
>Organization:
apache
>Release: 1.3.1
>Environment:
Linux darkstar.athome 2.0.34 #2 Wed Jul 22 12:11:36 EDT 1998 i486 unknown
compiled with gcc-2.7.2.3-8
>Description:
I have just upgraded from apache_1.3.0 to 1.3.1. With 1.3.0 the directives
in my .htaccess file relating to user authentication and file expiration
were working perfectly. With an identical server configuration for 1.3.1,
the very same .htaccess file that worked before is now being ignored.
For some reason, the .htaccess file is not being read when 1.3.1 enters the
directory in which .htaccess resides.
Relevant configuration highlights:
1)in srm.conf: AccessFileName .htaccess
UserDir public_html
2)in access.conf where the document root configuration is established:
AllowOverride AuthConfig
3)My .htaccess file (which resides in /home/bullock/public_html):
AuthName "Advising_Database"
AuthType Basic
AuthUserFile /www/etc/apache/users
require valid-user
<Files index.html>
ExpiresActive On
ExpiresDefault A20
</Files>
4)The password file: /www/etc/apache/users exists (and works fine with
apache_1.3.0.) I recreated this file using htpasswd that came with the
1.3.1 distribution just to make sure it was compatible with 1.3.1.
5)There are no entries in apache's error log mentioning a problem
with the server reading the .htaccess file.
The pages in /home/bullock/public_html are accessed just fine, but no
prompt appears for the user to enter a name and password. I have searched
dejanews and have read the Apache bug reports but have not found any
information that would help me solve my problem. Given that I have had
password authentication working ,via .htaccess, for several earlier versions
of Apache, I am at a loss to understand why I'm having so much difficulty
with apache_1.3.1 in this regard.
>How-To-Repeat:
??
>Fix:
No
>Audit-Trail:
>Unformatted:
[In order for any reply to be added to the PR database, ]
[you need to include <[EMAIL PROTECTED]> in the Cc line ]
[and leave the subject line UNCHANGED. This is not done]
[automatically because of the potential for mail loops. ]
