|
|
|
|
|
|
| Author |
Message |
Robbie Garrett
*nix forums beginner
Joined: 09 Dec 2005
Posts: 3
|
 Posted: Tue Dec 20, 2005 1:09 am Post subject:
mod_auth_mysql
|
|
|
hey guys,
so i'm trying to get this to work.. and i'm getting a whole bunch of errors. i'm running apache 2.2.0 with mysql 5.0.16
i download the file mod_auth_mysql-3.0.0.tar.gz from source fordge
i issue the command /usr/local/apache/bin/apxs -c -L/usr/local/mysql/lib/mysql -I/usr/local/mysql/include/mysql -lmysqlclient -lm -lz mod_auth_mysql.c
and i get
[root@localhost mod_auth_mysql-3.0.0]# /usr/local/apache/bin/apxs -c -L/usr/local/mysql/lib/mysql -I/usr/local/mysql/include/mysql -lmysqlclient -lm -lz mod_auth_mysql.c
/usr/local/apache/build/libtool --silent --mode=compile gcc -prefer-pic -DLINUX=2 -D_REENTRANT -D_GNU_SOURCE -D_LARGEFILE64_SOURCE -g -O2 -pthread -I/usr/local/apache/include -I/usr/local/apache/include -I/usr/local/apache/include -I/usr/local/mysql/include/mysql -c -o mod_auth_mysql.lo mod_auth_mysql.c && touch mod_auth_mysql.slo
mod_auth_mysql.c:591: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:591: error: initializer element is not constant
mod_auth_mysql.c:591: error: (near initialization for `mysql_auth_cmds[0].cmd_data')
mod_auth_mysql.c:591: error: initializer element is not constant
mod_auth_mysql.c:591: error: (near initialization for `mysql_auth_cmds[0]')
mod_auth_mysql.c:595: error: initializer element is not constant
mod_auth_mysql.c:595: error: (near initialization for `mysql_auth_cmds[1].func')
mod_auth_mysql.c:595: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:595: error: initializer element is not constant
mod_auth_mysql.c:595: error: (near initialization for `mysql_auth_cmds[1].cmd_data')
mod_auth_mysql.c:595: error: initializer element is not constant
mod_auth_mysql.c:595: error: (near initialization for `mysql_auth_cmds[1]')
mod_auth_mysql.c:599: error: initializer element is not constant
mod_auth_mysql.c:599: error: (near initialization for `mysql_auth_cmds[2].func')
mod_auth_mysql.c:599: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:599: error: initializer element is not constant
mod_auth_mysql.c:599: error: (near initialization for `mysql_auth_cmds[2].cmd_data')
mod_auth_mysql.c:599: error: initializer element is not constant
mod_auth_mysql.c:599: error: (near initialization for `mysql_auth_cmds[2]')
mod_auth_mysql.c:603: error: initializer element is not constant
mod_auth_mysql.c:603: error: (near initialization for `mysql_auth_cmds[3].func')
mod_auth_mysql.c:603: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:603: error: initializer element is not constant
mod_auth_mysql.c:603: error: (near initialization for `mysql_auth_cmds[3].cmd_data')
mod_auth_mysql.c:603: error: initializer element is not constant
mod_auth_mysql.c:603: error: (near initialization for `mysql_auth_cmds[3]')
mod_auth_mysql.c:607: error: initializer element is not constant
mod_auth_mysql.c:607: error: (near initialization for `mysql_auth_cmds[4].func')
mod_auth_mysql.c:607: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:607: error: initializer element is not constant
mod_auth_mysql.c:607: error: (near initialization for `mysql_auth_cmds[4].cmd_data')
mod_auth_mysql.c:607: error: initializer element is not constant
mod_auth_mysql.c:607: error: (near initialization for `mysql_auth_cmds[4]')
mod_auth_mysql.c:611: error: initializer element is not constant
mod_auth_mysql.c:611: error: (near initialization for `mysql_auth_cmds[5].func')
mod_auth_mysql.c:611: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:611: error: initializer element is not constant
mod_auth_mysql.c:611: error: (near initialization for `mysql_auth_cmds[5].cmd_data')
mod_auth_mysql.c:611: error: initializer element is not constant
mod_auth_mysql.c:611: error: (near initialization for `mysql_auth_cmds[5]')
mod_auth_mysql.c:615: error: initializer element is not constant
mod_auth_mysql.c:615: error: (near initialization for `mysql_auth_cmds[6].func')
mod_auth_mysql.c:615: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:615: error: initializer element is not constant
mod_auth_mysql.c:615: error: (near initialization for `mysql_auth_cmds[6].cmd_data')
mod_auth_mysql.c:615: error: initializer element is not constant
mod_auth_mysql.c:615: error: (near initialization for `mysql_auth_cmds[6]')
mod_auth_mysql.c:619: error: initializer element is not constant
mod_auth_mysql.c:619: error: (near initialization for `mysql_auth_cmds[7].func')
mod_auth_mysql.c:619: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:619: error: initializer element is not constant
mod_auth_mysql.c:619: error: (near initialization for `mysql_auth_cmds[7].cmd_data')
mod_auth_mysql.c:619: error: initializer element is not constant
mod_auth_mysql.c:619: error: (near initialization for `mysql_auth_cmds[7]')
mod_auth_mysql.c:623: error: initializer element is not constant
mod_auth_mysql.c:623: error: (near initialization for `mysql_auth_cmds[8].func')
mod_auth_mysql.c:623: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:623: error: initializer element is not constant
mod_auth_mysql.c:623: error: (near initialization for `mysql_auth_cmds[8].cmd_data')
mod_auth_mysql.c:623: error: initializer element is not constant
mod_auth_mysql.c:623: error: (near initialization for `mysql_auth_cmds[8]')
mod_auth_mysql.c:627: error: initializer element is not constant
mod_auth_mysql.c:627: error: (near initialization for `mysql_auth_cmds[9].func')
mod_auth_mysql.c:627: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:627: error: initializer element is not constant
mod_auth_mysql.c:627: error: (near initialization for `mysql_auth_cmds[9].cmd_data')
mod_auth_mysql.c:627: error: initializer element is not constant
mod_auth_mysql.c:627: error: (near initialization for `mysql_auth_cmds[9]')
mod_auth_mysql.c:631: error: initializer element is not constant
mod_auth_mysql.c:631: error: (near initialization for `mysql_auth_cmds[10].func')
mod_auth_mysql.c:631: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:631: error: initializer element is not constant
mod_auth_mysql.c:631: error: (near initialization for `mysql_auth_cmds[10].cmd_data')
mod_auth_mysql.c:631: error: initializer element is not constant
mod_auth_mysql.c:631: error: (near initialization for `mysql_auth_cmds[10]')
mod_auth_mysql.c:635: error: initializer element is not constant
mod_auth_mysql.c:635: error: (near initialization for `mysql_auth_cmds[11].func')
mod_auth_mysql.c:635: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:635: error: initializer element is not constant
mod_auth_mysql.c:635: error: (near initialization for `mysql_auth_cmds[11].cmd_data')
mod_auth_mysql.c:635: error: initializer element is not constant
mod_auth_mysql.c:635: error: (near initialization for `mysql_auth_cmds[11]')
mod_auth_mysql.c:639: error: initializer element is not constant
mod_auth_mysql.c:639: error: (near initialization for `mysql_auth_cmds[12].func')
mod_auth_mysql.c:639: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:639: error: initializer element is not constant
mod_auth_mysql.c:639: error: (near initialization for `mysql_auth_cmds[12].cmd_data')
mod_auth_mysql.c:639: error: initializer element is not constant
mod_auth_mysql.c:639: error: (near initialization for `mysql_auth_cmds[12]')
mod_auth_mysql.c:643: error: initializer element is not constant
mod_auth_mysql.c:643: error: (near initialization for `mysql_auth_cmds[13].func')
mod_auth_mysql.c:643: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:643: error: initializer element is not constant
mod_auth_mysql.c:643: error: (near initialization for `mysql_auth_cmds[13].cmd_data')
mod_auth_mysql.c:643: error: initializer element is not constant
mod_auth_mysql.c:643: error: (near initialization for `mysql_auth_cmds[13]')
mod_auth_mysql.c:651: error: initializer element is not constant
mod_auth_mysql.c:651: error: (near initialization for `mysql_auth_cmds[14].func')
mod_auth_mysql.c:651: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:651: error: initializer element is not constant
mod_auth_mysql.c:651: error: (near initialization for `mysql_auth_cmds[14].cmd_data')
mod_auth_mysql.c:651: error: initializer element is not constant
mod_auth_mysql.c:651: error: (near initialization for `mysql_auth_cmds[14]')
mod_auth_mysql.c:655: error: initializer element is not constant
mod_auth_mysql.c:655: error: (near initialization for `mysql_auth_cmds[15].func')
mod_auth_mysql.c:655: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:655: error: initializer element is not constant
mod_auth_mysql.c:655: error: (near initialization for `mysql_auth_cmds[15].cmd_data')
mod_auth_mysql.c:655: error: initializer element is not constant
mod_auth_mysql.c:655: error: (near initialization for `mysql_auth_cmds[15]')
mod_auth_mysql.c:659: error: initializer element is not constant
mod_auth_mysql.c:659: error: (near initialization for `mysql_auth_cmds[16].func')
mod_auth_mysql.c:659: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:659: error: initializer element is not constant
mod_auth_mysql.c:659: error: (near initialization for `mysql_auth_cmds[16].cmd_data')
mod_auth_mysql.c:659: error: initializer element is not constant
mod_auth_mysql.c:659: error: (near initialization for `mysql_auth_cmds[16]')
mod_auth_mysql.c:663: error: initializer element is not constant
mod_auth_mysql.c:663: error: (near initialization for `mysql_auth_cmds[17].func')
mod_auth_mysql.c:663: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:663: error: initializer element is not constant
mod_auth_mysql.c:663: error: (near initialization for `mysql_auth_cmds[17].cmd_data')
mod_auth_mysql.c:663: error: initializer element is not constant
mod_auth_mysql.c:663: error: (near initialization for `mysql_auth_cmds[17]')
mod_auth_mysql.c:667: error: initializer element is not constant
mod_auth_mysql.c:667: error: (near initialization for `mysql_auth_cmds[18].func')
mod_auth_mysql.c:667: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:667: error: initializer element is not constant
mod_auth_mysql.c:667: error: (near initialization for `mysql_auth_cmds[18].cmd_data')
mod_auth_mysql.c:667: error: initializer element is not constant
mod_auth_mysql.c:667: error: (near initialization for `mysql_auth_cmds[18]')
mod_auth_mysql.c:671: error: initializer element is not constant
mod_auth_mysql.c:671: error: (near initialization for `mysql_auth_cmds[19].func')
mod_auth_mysql.c:671: error: syntax error before "mysql_auth_config_rec"
mod_auth_mysql.c:671: error: initializer element is not constant
mod_auth_mysql.c:671: error: (near initialization for `mysql_auth_cmds[19].cmd_data')
mod_auth_mysql.c:671: error: initializer element is not constant
mod_auth_mysql.c:671: error: (near initialization for `mysql_auth_cmds[19]')
mod_auth_mysql.c:675: error: initializer element is not constant
mod_auth_mysql.c:675: error: (near initialization for `mysql_auth_cmds[20]')
mod_auth_mysql.c: In function `format_request':
mod_auth_mysql.c:947: warning: pointer/integer type mismatch in conditional expression
apxs:Error: Command failed with rc=65536
..
then i cry
can you guys help me? |
|
| Back to top |
|
 |
Michael Luff
*nix forums beginner
Joined: 19 Jul 2006
Posts: 4
|
| Posted: Wed Jul 19, 2006 2:18 pm Post subject:
RE: mod_auth_mysql
|
|
|
Hi Elaine,
Many thanks for the help, I've now got:
<Directory /var/www/localhost/htdocs>
AuthName "MailSource UK Intranet Zone, authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
# This next line controls which group(s) can access the resource
AllowOverride none
Require group user admin
Order allow,deny
Allow from 10.0.0.72
Satisfy Any
</Directory>
But now anyone can access it, not just the IUP address I've specified!
I can't seem to get around this all or nothing problem.
Can you see anything I've done wrong?
Regards,
Michael.
From: elaine [mailto:elaine@ccuec.unicamp.br]
Sent: 19 July 2006 13:49
To: users@httpd.apache.org
Subject: Re: [users@httpd] mod_auth_mysql
Michael,
Try to use the "allow" and "satisfy" directives.
This is an example, that we use to protect our intranet access :
(Note that the IP's and server name were modified, and we use the deny
directive
to refuse connections from reception kiosk.)
<Limit GET PUT POST>
# Allow access only to authenticated users from MySQL
# or users that are in the intranet
# (except IP xx.xx.xx.xx : reception kiosk)
require valid-user
Order allow,deny
Deny from xxx.xxx.xx.x
# Allow access from our internal network without
# username and password
Allow from example.com
Satisfy any
</Limit>
You can read more details about Satisfy directive :
http://httpd.apache.org/docs/2.2/mod/core.html#satisfy
Regards,
Elaine
Michael Luff wrote:
Hi All,
I've got mod_auth_mysql working nicely but I would like
the users on my internal network not to have to enter a username and
password, just people accessing from outside.
I've tried various solutions using Order deny,allow; allow from and so
forth but with no luck, I end up with everyone being prompted or no-one.
Here's my unmodified <Directory> command from my httpd.conf that
requires everyone to supply a password, can anyone suggest how I can
modify it to allow access from 10.0.0?
<Directory /var/www/localhost/htdocs>
AuthName "authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
# This next line controls which group(s) can access the resource
require group user admin
</Directory>
Regards,
Michael Luff MSc B.Eng (Hons) MIET
Facilities & Systems Manager
T: +44 (0)20 8614 7604
F: +44 (0)20 8614 7601
M: +44 (0)7976 404956
E: Michael.luff@mailsource.co.uk
MailSource UK Limited
- Europe's leading specialist in integrated document delivery solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
www.mailsource.co.uk <http://www.mailsource.co.uk/>
MailSource UK Limited
- Europe's leading specialist in integrated document delivery solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
www.mailsource.co.uk |
|
| Back to top |
|
|
paredes@aecom.yu.edu
*nix forums beginner
Joined: 21 Nov 2005
Posts: 6
|
| Posted: Wed Jul 19, 2006 10:51 pm Post subject:
Re: mod_auth_mysql
|
|
|
Greetings Michael!
What should work is the following:
<Directory /var/www/localhost/htdocs>
deny from all
allow from 10.0.0.72
AuthName "MailSource UK Intranet Zone, authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
Require group user admin
satisfy any
</directory>
William Paredes
Computer Based education
Albert Einstein College of Medicine
Bronx, New York USA
Michael Luff wrote:
| Quote: |
Hi Elaine,
Many thanks for the help, I’ve now got:
Directory /var/www/localhost/htdocs
AuthName "MailSource UK Intranet Zone, authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
# This next line controls which group(s) can access the resource
AllowOverride none
Require group user admin
Order allow,deny
Allow from 10.0.0.72
Satisfy Any
/Directory
But now anyone can access it, not just the IUP address I’ve specified!
I can’t seem to get around this all or nothing problem.
Can you see anything I’ve done wrong?
Regards,
Michael.
*From:* elaine [mailto:elaine@ccuec.unicamp.br]
*Sent:* 19 July 2006 13:49
*To:* users@httpd.apache.org
*Subject:* Re: [users@httpd] mod_auth_mysql
Michael,
Try to use the "allow" and "satisfy" directives.
This is an example, that we use to protect our intranet access :
(Note that the IP's and server name were modified, and we use the deny
directive
to refuse connections from reception kiosk.)
Limit GET PUT POST
# Allow access only to authenticated users from MySQL
# or users that are in the intranet
# (except IP xx.xx.xx.xx : reception kiosk)
require valid-user
Order allow,deny
Deny from xxx.xxx.xx.x
# Allow access from our internal network without
# username and password
Allow from example.com
Satisfy any
/Limit
You can read more details about Satisfy directive :
http://httpd.apache.org/docs/2.2/mod/core.html#satisfy
Regards,
Elaine
Michael Luff wrote:
Hi All,
I’ve got mod_auth_mysql working nicely but I would like the users on
my internal network not to have to enter a username and password, just
people accessing from outside.
I’ve tried various solutions using Order deny,allow; allow from and so
forth but with no luck, I end up with everyone being prompted or no-one..
Here’s my unmodified <Directory> command from my httpd.conf that
requires everyone to supply a password, can anyone suggest how I can
modify it to allow access from 10.0.0?
Directory /var/www/localhost/htdocs
AuthName "authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
# This next line controls which group(s) can access the resource
require group user admin
/Directory
Regards,
*Michael Luff** *MSc B.Eng (Hons) MIET*
**Facilities & Systems Manager *
T: +44 (0)20 8614 7604
F: +44 (0)20 8614 7601
M: +44 (0)7976 404956
E: Michael.luff@mailsource.co.uk <mailto:Michael.luff@mailsource.co.uk
*MailSource UK Limited *
- Europe's leading specialist in integrated document delivery solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
*www.mailsource.co.uk <http://www.mailsource.co.uk/>*
*MailSource UK Limited *
- Europe's leading specialist in integrated document delivery solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
*www.mailsource.co.uk <http://www.mailsource.co.uk/>*
|
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org |
|
| Back to top |
|
|
Michael Luff
*nix forums beginner
Joined: 19 Jul 2006
Posts: 4
|
| Posted: Thu Jul 20, 2006 8:33 am Post subject:
RE: mod_auth_mysql
|
|
|
Hi William,
Thanks for your help on this one. From what you and Elaine have
written and from what I've read, this really ought to work but I'm still
stuck with the all or nothing problem.
If I modify my file as you suggest, anyone can get access without being
prompted for a password, not just the IP I specify; if I comment out the
'satisfy any' line, I'm back to passwords for all.
As we agree that the approach is valid, can anyone think of any other
commands, directives etc somewhere else that might be having an effect
on this?
Many thanks,
Michael.
-----Original Message-----
From: paredes [mailto:paredes@aecom.yu.edu]
Sent: 19 July 2006 23:52
To: users@httpd.apache.org
Subject: Re: [users@httpd] mod_auth_mysql
Greetings Michael!
What should work is the following:
<Directory /var/www/localhost/htdocs>
deny from all
allow from 10.0.0.72
AuthName "MailSource UK Intranet Zone, authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
Require group user admin
satisfy any
</directory>
William Paredes
Computer Based education
Albert Einstein College of Medicine
Bronx, New York USA
Michael Luff wrote:
| Quote: |
Hi Elaine,
Many thanks for the help, I've now got:
Directory /var/www/localhost/htdocs
AuthName "MailSource UK Intranet Zone, authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
# This next line controls which group(s) can access the resource
AllowOverride none
Require group user admin
Order allow,deny
Allow from 10.0.0.72
Satisfy Any
/Directory
But now anyone can access it, not just the IUP address I've specified!
I can't seem to get around this all or nothing problem.
Can you see anything I've done wrong?
Regards,
Michael.
*From:* elaine [mailto:elaine@ccuec.unicamp.br]
*Sent:* 19 July 2006 13:49
*To:* users@httpd.apache.org
*Subject:* Re: [users@httpd] mod_auth_mysql
Michael,
Try to use the "allow" and "satisfy" directives.
This is an example, that we use to protect our intranet access :
(Note that the IP's and server name were modified, and we use the deny
directive
to refuse connections from reception kiosk.)
Limit GET PUT POST
# Allow access only to authenticated users from MySQL
# or users that are in the intranet
# (except IP xx.xx.xx.xx : reception kiosk)
require valid-user
Order allow,deny
Deny from xxx.xxx.xx.x
# Allow access from our internal network without
# username and password
Allow from example.com
Satisfy any
/Limit
You can read more details about Satisfy directive :
http://httpd.apache.org/docs/2.2/mod/core.html#satisfy
Regards,
Elaine
Michael Luff wrote:
Hi All,
I've got mod_auth_mysql working nicely but I would like the users on
my internal network not to have to enter a username and password, just
people accessing from outside.
I've tried various solutions using Order deny,allow; allow from and so
forth but with no luck, I end up with everyone being prompted or
no-one.
Here's my unmodified <Directory> command from my httpd.conf that
requires everyone to supply a password, can anyone suggest how I can
modify it to allow access from 10.0.0?
Directory /var/www/localhost/htdocs
AuthName "authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
# This next line controls which group(s) can access the resource
require group user admin
/Directory
Regards,
*Michael Luff** *MSc B.Eng (Hons) MIET*
**Facilities & Systems Manager *
T: +44 (0)20 8614 7604
F: +44 (0)20 8614 7601
M: +44 (0)7976 404956
E: Michael.luff@mailsource.co.uk
mailto:Michael.luff@mailsource.co.uk
*MailSource UK Limited *
- Europe's leading specialist in integrated document delivery
solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
*www.mailsource.co.uk <http://www.mailsource.co.uk/>*
*MailSource UK Limited *
- Europe's leading specialist in integrated document delivery
solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
*www.mailsource.co.uk <http://www.mailsource.co.uk/>*
|
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
MailSource UK Limited
- Europe's leading specialist in integrated document delivery solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
www.mailsource.co.uk
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org |
|
| Back to top |
|
|
paredes@aecom.yu.edu
*nix forums beginner
Joined: 21 Nov 2005
Posts: 6
|
| Posted: Thu Jul 20, 2006 6:01 pm Post subject:
Re: mod_auth_mysql
|
|
|
Greetings Michael!
Which versions of apache and mod_auth_mysql are you using? What platform
are you on? When you check your httpd.conf file is mod_auth being loaded?
Regards,
William Paredes
Computer Based Education
Albert Einstein College of Medicine
Bronx, New York USA
Michael Luff wrote:
| Quote: | Hi William,
Thanks for your help on this one. From what you and Elaine have
written and from what I've read, this really ought to work but I'm still
stuck with the all or nothing problem.
If I modify my file as you suggest, anyone can get access without being
prompted for a password, not just the IP I specify; if I comment out the
'satisfy any' line, I'm back to passwords for all.
As we agree that the approach is valid, can anyone think of any other
commands, directives etc somewhere else that might be having an effect
on this?
Many thanks,
Michael.
-----Original Message-----
From: paredes [mailto:paredes@aecom.yu.edu]
Sent: 19 July 2006 23:52
To: users@httpd.apache.org
Subject: Re: [users@httpd] mod_auth_mysql
Greetings Michael!
What should work is the following:
Directory /var/www/localhost/htdocs
deny from all
allow from 10.0.0.72
AuthName "MailSource UK Intranet Zone, authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
Require group user admin
satisfy any
/directory
William Paredes
Computer Based education
Albert Einstein College of Medicine
Bronx, New York USA
Michael Luff wrote:
Hi Elaine,
Many thanks for the help, I've now got:
Directory /var/www/localhost/htdocs
AuthName "MailSource UK Intranet Zone, authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
# This next line controls which group(s) can access the resource
AllowOverride none
Require group user admin
Order allow,deny
Allow from 10.0.0.72
Satisfy Any
/Directory
But now anyone can access it, not just the IUP address I've specified!
I can't seem to get around this all or nothing problem.
Can you see anything I've done wrong?
Regards,
Michael.
*From:* elaine [mailto:elaine@ccuec.unicamp.br]
*Sent:* 19 July 2006 13:49
*To:* users@httpd.apache.org
*Subject:* Re: [users@httpd] mod_auth_mysql
Michael,
Try to use the "allow" and "satisfy" directives.
This is an example, that we use to protect our intranet access :
(Note that the IP's and server name were modified, and we use the deny
directive
to refuse connections from reception kiosk.)
Limit GET PUT POST
# Allow access only to authenticated users from MySQL
# or users that are in the intranet
# (except IP xx.xx.xx.xx : reception kiosk)
require valid-user
Order allow,deny
Deny from xxx.xxx.xx.x
# Allow access from our internal network without
# username and password
Allow from example.com
Satisfy any
/Limit
You can read more details about Satisfy directive :
http://httpd.apache.org/docs/2.2/mod/core.html#satisfy
Regards,
Elaine
Michael Luff wrote:
Hi All,
I've got mod_auth_mysql working nicely but I would like the users on
my internal network not to have to enter a username and password, just
people accessing from outside.
I've tried various solutions using Order deny,allow; allow from and so
forth but with no luck, I end up with everyone being prompted or
no-one.
Here's my unmodified <Directory> command from my httpd.conf that
requires everyone to supply a password, can anyone suggest how I can
modify it to allow access from 10.0.0?
Directory /var/www/localhost/htdocs
AuthName "authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
# This next line controls which group(s) can access the resource
require group user admin
/Directory
Regards,
*Michael Luff** *MSc B.Eng (Hons) MIET*
**Facilities & Systems Manager *
T: +44 (0)20 8614 7604
F: +44 (0)20 8614 7601
M: +44 (0)7976 404956
E: Michael.luff@mailsource.co.uk
mailto:Michael.luff@mailsource.co.uk
*MailSource UK Limited *
- Europe's leading specialist in integrated document delivery
solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
*www.mailsource.co.uk <http://www.mailsource.co.uk/>*
*MailSource UK Limited *
- Europe's leading specialist in integrated document delivery
solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
*www.mailsource.co.uk <http://www.mailsource.co.uk/>*
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
MailSource UK Limited
- Europe's leading specialist in integrated document delivery solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
www.mailsource.co.uk
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
|
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org |
|
| Back to top |
|
|
Michael Luff
*nix forums beginner
Joined: 19 Jul 2006
Posts: 4
|
| Posted: Fri Jul 21, 2006 6:58 am Post subject:
RE: mod_auth_mysql
|
|
|
Hello again,
I'm using apache v2.0.55 and mod_auth_mysql v3 on a Gentoo Linux
box. Below is a section from my httpd.conf - does it look right?
# These modules provide authentication and authorisation for
# clients. They should not normally be disabled.
#
LoadModule access_module modules/mod_access.so
LoadModule auth_module modules/mod_auth.so
LoadModule auth_anon_module modules/mod_auth_anon.so
LoadModule auth_dbm_module modules/mod_auth_dbm.so
LoadModule auth_digest_module modules/mod_auth_digest.so
Many thanks,
Michael.
-----Original Message-----
From: paredes [mailto:paredes@aecom.yu.edu]
Sent: 20 July 2006 19:01
To: users@httpd.apache.org
Subject: Re: [users@httpd] mod_auth_mysql
Greetings Michael!
Which versions of apache and mod_auth_mysql are you using? What platform
are you on? When you check your httpd.conf file is mod_auth being
loaded?
Regards,
William Paredes
Computer Based Education
Albert Einstein College of Medicine
Bronx, New York USA
Michael Luff wrote:
| Quote: | Hi William,
Thanks for your help on this one. From what you and Elaine have
written and from what I've read, this really ought to work but I'm
still stuck with the all or nothing problem.
If I modify my file as you suggest, anyone can get access without
being prompted for a password, not just the IP I specify; if I comment
out the 'satisfy any' line, I'm back to passwords for all.
As we agree that the approach is valid, can anyone think of any other
commands, directives etc somewhere else that might be having an effect
on this?
Many thanks,
Michael.
-----Original Message-----
From: paredes [mailto:paredes@aecom.yu.edu]
Sent: 19 July 2006 23:52
To: users@httpd.apache.org
Subject: Re: [users@httpd] mod_auth_mysql
Greetings Michael!
What should work is the following:
Directory /var/www/localhost/htdocs
deny from all
allow from 10.0.0.72
AuthName "authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
Require group user admin
satisfy any
/directory
William Paredes
Computer Based education
Albert Einstein College of Medicine
Bronx, New York USA
Michael Luff wrote:
Hi Elaine,
Many thanks for the help, I've now got:
Directory /var/www/localhost/htdocs
AuthName "authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
# This next line controls which group(s) can access the resource
AllowOverride none
Require group user admin
Order allow,deny
Allow from 10.0.0.72
Satisfy Any
/Directory
But now anyone can access it, not just the IUP address I've
specified!
I can't seem to get around this all or nothing problem.
Can you see anything I've done wrong?
Regards,
Michael.
*From:* elaine [mailto:elaine@ccuec.unicamp.br]
*Sent:* 19 July 2006 13:49
*To:* users@httpd.apache.org
*Subject:* Re: [users@httpd] mod_auth_mysql
Michael,
Try to use the "allow" and "satisfy" directives.
This is an example, that we use to protect our intranet access :
(Note that the IP's and server name were modified, and we use the
deny
directive
to refuse connections from reception kiosk.)
Limit GET PUT POST
# Allow access only to authenticated users from MySQL # or users that
are in the intranet # (except IP xx.xx.xx.xx : reception kiosk)
require valid-user
Order allow,deny
Deny from xxx.xxx.xx.x
# Allow access from our internal network without # username and
password
Allow from example.com
Satisfy any
/Limit
You can read more details about Satisfy directive :
http://httpd.apache.org/docs/2.2/mod/core.html#satisfy
Regards,
Elaine
Michael Luff wrote:
Hi All,
I've got mod_auth_mysql working nicely but I would like the users on
my internal network not to have to enter a username and password,
just
people accessing from outside.
I've tried various solutions using Order deny,allow; allow from and
so
forth but with no luck, I end up with everyone being prompted or
no-one.
Here's my unmodified <Directory> command from my httpd.conf that
requires everyone to supply a password, can anyone suggest how I can
modify it to allow access from 10.0.0?
Directory /var/www/localhost/htdocs
AuthName "authentication required"
AuthType Basic
AuthMySQLHost localhost
AuthMySQLEnable on
AuthMySQLUser xxxxxx
AuthMySQLPassword xxxxxxx
AuthMySQLDB auth
AuthMySQLUserTable users
AuthMySQLNameField user_name
AuthMySQLPasswordField user_passwd
AuthMySQLGroupTable groups
AuthMySQLGroupField user_group
# This next line controls which group(s) can access the resource
require group user admin
/Directory
Regards,
*Michael Luff** *MSc B.Eng (Hons) MIET* **Facilities & Systems
Manager *
T: +44 (0)20 8614 7604
F: +44 (0)20 8614 7601
M: +44 (0)7976 404956
E: Michael.luff@mailsource.co.uk
mailto:Michael.luff@mailsource.co.uk
*MailSource UK Limited *
- Europe's leading specialist in integrated document delivery
solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
*www.mailsource.co.uk <http://www.mailsource.co.uk/>*
*MailSource UK Limited *
- Europe's leading specialist in integrated document delivery
solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
*www.mailsource.co.uk <http://www.mailsource.co.uk/>*
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
MailSource UK Limited
- Europe's leading specialist in integrated document delivery
solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
www.mailsource.co.uk
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
|
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
MailSource UK Limited
- Europe's leading specialist in integrated document delivery solutions
- Holders of the RoSPA Health & Safety Gold Medal 2006/2007
Northumberland House
15 Petersham Road
Richmond-upon-Thames
Surrey TW10 6TP
www.mailsource.co.uk
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org |
|
| Back to top |
|
|
Google
|
|
| Back to top |
|
|
|
|
The time now is Sun Nov 23, 2008 2:16 pm | All times are GMT
|
|
Loans | Free Ringtone | Credit Card | Free Credit Report | Adverse Credit Remortgage
|
|
Copyright © 2004-2005 DeniX Solutions SRL
|
|
|
|
Other DeniX Solutions sites:
Unix/Linux blog |
electronics forum |
medicine forum |
science forum |
|
|
Privacy Policy
|
Powered by phpBB © 2001, 2005 phpBB Group
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
Forum index
»
Apps
»
Apache
