Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [http-basic-authentication]

256 questions
2
votes
2 answers

Apache basic HTTP authentication not working

Trying to setup basic HTTP authentication with Apache, but it's not working. I get the directory listing and files regularly, no authentication required. I tried restarting httpd and the browsers cache. I can't find any relevant entries in…
johndir
  • 305
  • 1
  • 5
  • 9
2
votes
1 answer

NGinx proxy, adding a basic authentication based on ip address

I’m building a system based on OpenVPN, where clients will connect to a website, secured by Basic Authentication (that’s the way it is, no way to change this). I wish I could go through a nginx proxy that would add for me the correct basic…
Olivier D.
  • 23
  • 4
2
votes
1 answer

Rewriting a query-string part as a path part using nginx?

How do I rewrite URIs of the form /one/two?path=three&foo=bar to /one/two/three?foo=bar using nginx?
user70549
  • 123
  • 1
  • 5
2
votes
1 answer

Apache and mod_dbd Getting "DBD: mod_dbd not compatible with APR in get_driver"

Im tring to implement basic authentication with Apache server and plugin's the proxy part working great but when i try to preform request that suppose to trigger the mod_authn_dbd and its dependency's im getting this error: [Sat Sep 03 17:42:38…
user61104
  • 519
  • 1
  • 8
  • 16
2
votes
1 answer

Catching url parameters( "?=" or "&=" ) with Apache LocationMatch

I couldn't think of a good title for this. Basically I have basic auth that covers the whole site from /, but I want urls with certain parameters to be excluded from authentication. Example: do not authenticate if there is a parameter named…
Saifis
  • 209
  • 3
  • 13
2
votes
2 answers

IIS7 How-To : Basic Folder Authentication

i am really lost with this problem and im hoping someone can help me out with some good old fashioned instructions. i was able in windows 2003 to setup a folder on our webserver so when navigating to it, the brower would request a username and…
Kristiaan
  • 442
  • 1
  • 9
  • 22
2
votes
1 answer

How is using client certificates more secure than TLS plus basic authentication?

I've read that securing services with client certificates is more secure than using the combination of TLS with basic authentication. Client certificates have substantial drawbacks in terms of setup complexity and performance, so I'm looking for…
Dan
  • 620
  • 6
  • 18
2
votes
1 answer

squid closes the connection when presented with "401 Unauthorized"

This is the conversation: ==> GET http://xy/z HTTP/1.1 <== HTTP/1.0 401 Unauthorized / Proxy-Connection: close When bypassing Squid (squid/3.0.STABLE6), I get the HTTP basic authentication prompt, as it should. Is there a specific setting that…
user27451
  • 1,161
  • 2
  • 11
  • 14
2
votes
3 answers

Apache 2.4.51 bypass Basic Auth for specific query string

I need Basic Auth on my website, except if a specific hash is present in the URL. www.example.com => Authentication required www.example.com/whatever => Authentication required www.example.com/whatever?hash=123456 => No Authentication…
MrUpsidown
  • 123
  • 6
2
votes
0 answers

401 Error When Making Basic Authenticated API Calls to X2CRM

We are encountering a 401 error when making basic authenticated API calls to the X2CRM endpoints (index.php/api2/Contacts). Unauthenticated API calls to other X2CRM VoIP endpoints are successful without issue, And basic authentication works on a…
AES
  • 21
  • 2
2
votes
1 answer

Apache2 OpenLDAP authorization fails using ldap-user

I have an Apache2 server running in a Docker container (httpd:2.4.54-bullseye), and an LDAP server (OpenLDAP slapd 2.4.57+dfsg-3 on Debian 11.1) I'm trying to use mod_authnz_ldap Apache module to authenticate certain users from the LDAP. Here is the…
bondif
  • 123
  • 5
2
votes
1 answer

I'm not sure if basic auth on my server is being secured

This may be a really dumb question but I had to make sure that i'm fine with this. I setup an HTTPS server with basic auth, but the browser informs me that the connection is not secured when i connect to the auth page, and tells me that the…
Jungroy
  • 23
  • 5
2
votes
1 answer

Are there common situations that cause a "401 Error" being displayed without a login dialog being displayed first?

Perhaps this is a somewhat broad question, but I am currently relying on shots in the dark ... We sometimes provide access to some web URLs (running Apache 2.4) protected by basic password protection. I have never seen it myself, but every now and…
Hagen von Eitzen
  • 824
  • 3
  • 17
  • 43
1
vote
0 answers

Apache individual DocumentRoot per REMOTE_USER

How can I give authenticated users an individual view of the DocumentRoot? I would like to lock users in their own directory. When alice visits http://example.net/ she only sees /srv/www/alice/ and bob sees /srv/www/bob/. I tried this: DocumentRoot…
Frank
  • 111
  • 2
1
vote
0 answers

gitweb: Use Apache HTTP basic authentication for repository authentication

I use gitweb to serve remote Git repositories on a server running Apache2. Everything is setup with automatic redirection from HTTP to HTTPS and Basic password authentication (though this might change to a more powerful method in the future). This…
Philipp Burch
  • 111
  • 1
1 2 3
17 18