For future readers, to make it so that requests for objects above the $WebPath directory (like /favicon.ico, when WebPath is "/rt") do not trash the current session, I changed the RT installation so that it runs from the root directory of a subdiomain (rt.example.com) instead of a subdirectory (example.com/rt).
Changes to Apache config files: /etc/apache2/sites-available/rt.example.com: insecure vhost container: + backwards compat for anyone with old links to subdir: + RewriteEngine on + RewriteCond %{REQUEST_URI} ^/rt(.*) + RewriteRule .* http://rt.example.com%1 [R] - Alias /rt /usr/share/request-tracker3.8/html - <Location /rt/REST/1.0/NoAuth> + <Location /REST/1.0/NoAuth> same changes to secure vhost container except rewrite redirects to httpS /etc/request-tracker3.8/apache2-modperl2.conf: -RewriteRule ^/rt$ /rt/ -RewriteRule ^/rt/(.*)$ /usr/share/request-tracker3.8/html/$1 -<Location /rt/REST/1.0/NoAuth> +<Location /REST/1.0/NoAuth> /etc/request-tracker3.8/RT_SiteConfig.d/50-debconf Set($WebPath , "/rt"); Set($WebPath , ""); _______________________________________________ http://lists.bestpractical.com/cgi-bin/mailman/listinfo/rt-users Community help: http://wiki.bestpractical.com Commercial support: sa...@bestpractical.com Discover RT's hidden secrets with RT Essentials from O'Reilly Media. Buy a copy at http://rtbook.bestpractical.com