Just been chasing this one down myself today. I believe I know what is happening, just no idea _why_ :-(
at the bottom of mysql_check_auth it has: if (! sec->authoritative) return DECLINED; .. return HTTP_UNAUTHORIZED; The problem for me is that it is going through the DECLINED route rather than the HTTP_UNAUTHORIZED route. I've tried various changes to the config file but can't get it think that it is authoritative. All the code looks right (AFAICT) so I must be missing something. Config file below. FWIW I've tried moving both lots into a single Directory directive too. <Directory /usr/share/moni/> AllowOverride None Options ExecCGI FollowSymlinks Order allow,deny Allow from all </Directory> Auth_MySQL_Info server user password <Location /moni/> # Authentication sources AuthType Basic AuthName "some random auth" Auth_MYSQL on Auth_MySQL_Authoritative on Auth_MySQL_DB jira Auth_MySQL_Password_Table userbase Auth_MySQL_Username_Field username Auth_MySQL_Password_Field PASSWORD_HASH Auth_MySQL_Group_Table membershipbase Auth_MySQL_Group_User_Field USER_NAME Auth_MySQL_Group_Field GROUP_NAME # if Empty_Passwords is on then if password is "" no password is required Auth_MySQL_Empty_Passwords off #Auth_MySQL_Encryption_Types Plaintext Crypt_DES MySQL SHA512 Auth_MySQL_Encryption_Types SHA512 #require valid-user Require group moni-access </Location> Adrian -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
