1. If everything is done *exactly* how the Wiki page suggests, then (because there's no /redirect) I just get a 403 Forbidden error together with a 404 Not Found error. Logs show that "guest" authenticated, that "session key" was generated and that "Sent cookie: Apache::AxKit::Plugin::Session_AxKitSession=...". Moreover, [Thu Jul 24 10:00:31 2003] [error] login() not redirecting, user = guest, SID = f1d110423963e094eec60b404eef99d8" and then it tries to /redirect and fails - not found. Indeed, I get a cookie.So, I got quite a ways along. It now generates cookies no problem, sendsWhat exatly happens/doesn't happen?
them along, with session id's etc. However, authentication still doesn't
quite work.
2. If I were to enable (incorrectly, as you said),AxKitSessionLoginScript, everything is much the same, except I get *two* cookies (A::A::P::S_AxKitSession and A::A::P::S_AxKitSessionReason) and the login page. Trying to log in - same result - it tries to go back to /protected, through /redirect and fails Not Found.
3. If I change ErrorDocument to /login.xsp - then the login form shows, if I try to click "Login" there, it authenticates whatever I type in (independent of the password/user name) - just says "You are logged on as: xxxxx".
So that's where I stand.
I think the problem is with the "ErrorDocument 403
/redirect?url=/login.xsp" directive. I don't have a /redirect anywhere.
You have :-) It's part of what A::A::P::S does when it is loaded via PerlModule. But you must load it in the vhost you want to use it in.
Actually, there might be a modperl_version-specific bug there.
Try "ErrorDocument 403 /login.xsp". It won't let you login, but should show the login form. If it does show the form, it is indeed a bug I must fix. If it doesn't, the problem is elsewhere.
Before you start fixing, here's a thought I just had. This installation of apache/mod_perl/AxKit I compiled from scratch. Could it be that I forgot to compile something in and that prevents A::A::P::S from registering that /redirect?
Here's the output of httpd -l
Compiled-in modules: http_core.c mod_env.c mod_log_config.c mod_mime.c mod_negotiation.c mod_status.c mod_include.c mod_autoindex.c mod_dir.c mod_cgi.c mod_asis.c mod_imap.c mod_actions.c mod_userdir.c mod_alias.c mod_access.c mod_auth.c mod_setenvif.c mod_perl.c suexec: disabled; invalid wrapper /usr/local/apache/bin/suexec
And of httpd -V:
Server version: Apache/1.3.27 (Unix) Server built: Jul 16 2003 16:38:20 Server's Module Magic Number: 19990320:13 Server compiled with.... -D HAVE_MMAP -D HAVE_SHMGET -D USE_SHMGET_SCOREBOARD -D USE_MMAP_FILES -D HAVE_FCNTL_SERIALIZED_ACCEPT -D HAVE_SYSVSEM_SERIALIZED_ACCEPT -D SINGLE_LISTEN_UNSERIALIZED_ACCEPT -D HARD_SERVER_LIMIT=256 -D HTTPD_ROOT="/usr/local/apache" -D SUEXEC_BIN="/usr/local/apache/bin/suexec" -D DEFAULT_PIDLOG="logs/httpd.pid" -D DEFAULT_SCOREBOARD="logs/httpd.scoreboard" -D DEFAULT_LOCKFILE="logs/httpd.lock" -D DEFAULT_ERRORLOG="logs/error_log" -D TYPES_CONFIG_FILE="conf/mime.types" -D SERVER_CONFIG_FILE="conf/httpd.conf" -D ACCESS_CONFIG_FILE="conf/access.conf" -D RESOURCE_CONFIG_FILE="conf/srm.conf"
Any ideas?
Thanks!
--Misha
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
