At 03:45 24/04/2001 -0800, you wrote:
>Hi,
>I am using apache on linux and want to set up a dnewsweb with password
>protected groups (without password protecting everything is runnig well).
>I read to use the web server to force username/password restrictions. So I
>tried to use the access-restriction with the apache-.htaccess-file for the
>dnewsweb-cgi-folder. The content is:
>
>AuthType Basic
>AuthName "DnewsWeb"
>AuthUserFile /usr/local/dnews/cgi/.htpasswd
>require valid-user
>
>Is this the right way?
>Because the problem is, that the username and password has to be in the
>.htpasswd, but I want to use the usersnames from the dnews users.dat.
This is unfortunately not possible, (why I've never known it would be a
simple change to
a web server to allow cgi scripts to handle authentication but we can' t
implement it in
the cgi without the web server supporting it, and as far as I know they
don't)
Anyway, what you want to do is setup in access.conf password protected
groups and add
to dnewsweb.ini
tellnews_pass xxx
where 'xxx' is the contents of the tellnews.pass file from dnews workarea.
Then if you password protect a group in dnews, dnewsweb will also require
the user to login
for those groups, to make it more definite add to dnewsweb.ini
require_login true
ChrisP.
