Apache 1.3.x directive question

pll at lanminds.com pll at lanminds.com
Tue May 27 16:43:51 EDT 2003


Hi,

I have the followig <Directory ...> sections in my httpd.conf file:

    DocumentRoot /var/www
    <Directory />
        Options FollowSymLinks ExecCGI
        AllowOverride None
        AuthType Basic
        AuthName "Paul's Area"
        AuthLDAPAuthoritative On
        AuthLDAPURL ldap://localhost/ou=people,dc=EMC,dc=Centera
        Satisfy All
        Require valid-user
    </Directory>

    Alias /admin/ /var/www/admin
    <Directory /admin/>
        Options FollowSymLinks ExecCGI
        AllowOverride None
        AuthType Basic
        AuthName "Paul's Secret Admin Area"
        AuthLDAPAuthoritative On
        AuthLDAPURL ldap://localhost/cn=Admins,dc=EMC,dc=Centera
        AuthLDAPGroupAttributeIsDN On
        Satisfy All
        Require group cn=Admins,dc=EMC,dc=Centera
    </Directory>

As I understand the Apache docs, if one <Directory> section refers to 
a path which a child of another section, then the directives are 
applied in order.  Is this incorrect?

What I want to effectively do is have the root of the web site 
require LDAP password authentication, but further restrict on 
directory only to those in the Admin group.

I have the LDAP authentication/authorization working just fine, 
except that it seems to only match against the root directives and 
never tries to match against the /admin/ directives.

Pointers and/or dope slaps gratefully accepted :)

Thanks,
-- 

Seeya,
Paul
--
Key fingerprint = 1660 FECC 5D21 D286 F853  E808 BB07 9239 53F1 28EE

	It may look like I'm just sitting here doing nothing,
   but I'm really actively waiting for all my problems to go away.

	 If you're not having fun, you're not doing it right!





More information about the gnhlug-discuss mailing list