Re: How to enable SSL in per directory basis?

Thu, 26 Nov 1998 02:40:18 -0500 


Our admittedly not very good way around this (and hopefully someone will
show a much nicer way after I post this) is:

We add the following Rewrite rules to a .htaccess file ...

RewriteEngine On
RewriteCond %{SERVER_PORT} 80
RewriteRule ^/var/htdocs/(.*) https://www.deakin.edu.au/$1

However.. when this is combined with authentication we run up against the
problem of people having to authenticate twice.. once in clear text and then
once in encrypted form... which is just not good enough for our requirements.
I know we can get around this using mod_perl but that is not acceptable for
our situation unfortunately where people who add .htaccess files do not have
access to editing the server's configuration.

Can you do something like.. #ifdef SSL to make the Auth sections of your
.htaccess only apply when the secure server reads the file?

ie..

RewriteEngine On
RewriteCond %{SERVER_PORT} 80
RewriteRule ^/var/htdocs/(.*) https://www.deakin.edu.au/$1
#ifdef SSL

AuthType Basic
AuthName "ITS ONLY"
AuthDBMUserFile /var/htinfo/auth_dbm/All_Users.db
AuthDBMGroupFile /var/htinfo/auth_dbm/Staff_Groups.db
require group IT
require valid-user

#endif

Thoughts?

If this functionality is not available perhaps it should be considered for
implementation?

Thanks for reading,

Travis.

    Date:       Thu, 26 Nov 1998 11:43:10 +0700 (GMT+0700)
    From:       Surasak Sukhsawas <[EMAIL PROTECTED]>

>Dear Sir,
>
>If I wanna run only one httpd, how can I config it like this:
>
><Directory /htdocs>
>Options SSLEnable ....
></Dir>
>
><Dir UserDir>
>Options SSLDisable ....
></Dir>
>
><Dir /htdocs/somedir>
>Options SSLDisable ....
></Dir>
>
>Please tell me. Thanks in advance.
>
>Regards,
>Surasak.
>______________________________________________________________________
>Apache Interface to SSLeay (mod_ssl)   www.engelschall.com/sw/mod_ssl/
>Official Support Mailing List               [EMAIL PROTECTED]
>Automated List Manager                       [EMAIL PROTECTED]
>



Travis Freeland

Web Administrator
Deakin University 
[EMAIL PROTECTED]
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl)   www.engelschall.com/sw/mod_ssl/
Official Support Mailing List               [EMAIL PROTECTED]
Automated List Manager                       [EMAIL PROTECTED]

Reply via email to