Re: Authenticate when SSL is activeted only?
On 22 Apr 2003, axacheng wrote:
> I am running apache 1.3.26, apache-ssl 1.3.26 on Debian Woody 3.0r1.
> The reason is that I think a user should not type his LDAP account
> and password when the connection is not secure. Any comment is
> appreciated :)
Try the following to redirect your users to the secure version of
the page:
SSLRequireSSL
ErrorDocument 403 https://www.domain.com
However, it depends if the authentication is done before or after
checking SSL. I've never done this with HTTP authentication.
Oliver
Reply to: