apache & basic auth

From: Steven Drake (sdrake@ihug.co.nz)
Date: Fri, Sep 17 1999


Date: Sat, 18 Sep 1999 05:09:25 +1200 (NZST)
From: Steven Drake <sdrake@ihug.co.nz>
To: W3C Validator <www-validator@w3.org>
Message-ID: <Pine.LNX.4.05.9909180458170.5946-100000@sirius.aquila.net.nz>
Subject: apache & basic auth

instead of compiling apache with SECURITY_HOLE_PASS_AUTHORIZATION defined
try this ugly hack

compile apache with mod_rewrite, then put this in httpd.conf

ReWriteEngine On
ReWriteRule ^/check(.*) /cgi-bin/check$1 
    [E=HTTP_AUTHORIZATION:%{HTTP:AUTHORIZATION},PT,L]

the ReWriteRule don't do much but the E flag is the important bit.

ugly but it works


Steven Drake <sdrake@ihug.co.nz>
      1: Linux - will work for fish.
      2: The Linux penguin - looks stuffed to the brim with herring.
( make your own conclusions )