Password protect apache home directories

paul_mat · #1 22nd March 2006, 01:24 AM

hi there,

i'm trying to get it so that when you access

http://www.example.com/~usera

you are asked for a password & username, if it's not the username/password of usera then they are denied.

daverj · #2 22nd March 2006, 01:31 AM

Shouldn't be too hard. Simply create a login page.

Dave

paul_mat · #3 22nd March 2006, 01:37 AM

do you mind giving me a little more information on that? such as an example, a link to a page explaining it? or just tell me what you mean?

at the moment if a user goes to http://www.example.com/~username they can access there home directory, with no password.

i need to prevent anyone from being able to access that page other than the user?

daverj · #4 22nd March 2006, 02:46 AM

What exactly happens when someone hits http://www.example.com/~username? Is a directory listing presented? Is a webpage presented? If it is a webpage, then creating a login form will do it. If it is a directory listing, then I am not sure how to do this since behind the scenes it is (most likely) the apache user that accesses the directory. You could still have a login form, but then you would need to programatically generate the directory contents. Not sure yet how to do that, but it shouldn't be too hard with PHP or Perl.

Dave

paul_mat · #5 22nd March 2006, 03:39 AM

yes, it is a directory listing.

At the moment i can make it so when visiting www.example.com/~usera you have to be a valid ldap user.

http://www.yourhowto.org/content/view/47/9/ - this is how i have set this up

now i want to make it so only the user who own the home directory can access it, not all valid users

Spoon! · #6 22nd March 2006, 04:47 AM

To password protect a directory (or file or whatever), read this: http://httpd.apache.org/docs/2.2/howto/auth.html

paul_mat · #7 22nd March 2006, 07:25 AM

thanks spoon!

off that website i came to this

http://httpd.apache.org/docs/2.2/mod...thz_owner.html

but i'm not sure if i have the mod_authz_owner

can someone tell me how to find out if i do?

if someone here has ever used this mod or knows how to use it with ldap
can they tell me about it.

this is my current setup and it's not working, it's just denying me access

<Directory /home/*/public_html>
AuthType Basic
AuthName "Case Network ID"
AuthLDAPURL "ldap://127.0.0.1/ou=people,dc=fedora,dc=directory,dc=server"
AuthLDAPBindDN "uid=root,ou=people,dc=fedora,dc=directory,dc=serv er"
AuthLDAPBindPassword "password"
Satisfy All
require file-owner
</Directory>

when i change it to

require valid-user it works

PS: go the tick! i always loved his battle cry! Spoon!!