Bug#92052: Present in apache 2 & workaround

To: 92052@bugs.debian.org
Subject: Bug#92052: Present in apache 2 & workaround
From: Sam Morris <sam@robots.org.uk>
Date: Tue, 27 May 2008 19:13:19 +0100
Message-id: <[🔎] 1211911999.19463.10.camel@xerces>
Reply-to: Sam Morris <sam@robots.org.uk>, 92052@bugs.debian.org

clone 92052 -1
reassign -1 apache2
found -1 2.2.3-4
thanks

Ideally a granular (at least per-vhost) option to enable or disable this
feature would be useful--I would like to allow certain (fast)cgi scripts
the ability to process HTTP authentication, but I don't want others
having access to the usernames/passwords that my users authenticate
with.

The following mod_rewrite rules implement a workaround:

        RewriteCond %{HTTP:Authorization} (.*)
        RewriteRule . - [env=HTTP_AUTHORIZATION:%1]

These directives are granular down to the directory/.htaccess level. :)

-- 
Sam Morris
http://robots.org.uk/

PGP key id 1024D/5EA01078
3412 EA18 1277 354B 991B  C869 B219 7FDB 5EA0 1078

Attachment: signature.asc
Description: This is a digitally signed message part

Reply to:

Prev by Date: Bug#483110: marked as done (FTBFS: apache2: missing build dependancy)
Next by Date: Processed: Re: Bug#92052: Present in apache 2 & workaround
Previous by thread: Processed: apache2: severity of 479136 is minor
Next by thread: Processed: Re: Bug#92052: Present in apache 2 & workaround
Index(es):
- Date
- Thread