Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. Apache>
  3. Users
allow general access after 1 auth
Marc at f1-outsourcing
Aug 12, 2023, 9:56 AM
Post #1 of 5 (182 views)
Permalink
I was wondering if it is possible to allow general access to an url after some account authenticated for this url. Without the necessity to adapt the web application for this

Say we have closed https://www.example.com/webapp with something like
Require valid-user
Order deny,allow
Deny from all

If someone authenticates on https://www.example.com/webapp, the url is available for everyone.

Some inactivity timeout should lock the url again.
???????????????????????????????????????????????????????????????????????F?V?7V'67&?&R?R???âW6W'2?V?7V'67&?&T?GGB?6?R??&p?f?"FF?F????6????G2?R???âW6W'2?V??GGB?6?R??&p
Re: allow general access after 1 auth [ In reply to ]
wefatherley at gmail
Aug 12, 2023, 10:30 AM
Post #2 of 5 (181 views)
Permalink
>
> I was wondering if it is possible to allow general access to an url after
> some account authenticated for this url. Without the necessity to adapt the
> web application for this
>

> Yes, that would be mod session and it’s related modules
Re: allow general access after 1 auth [ In reply to ]
covener at gmail
Aug 12, 2023, 10:53 AM
Post #3 of 5 (181 views)
Permalink
On Sat, Aug 12, 2023 at 1:30?PM Will Fatherley <wefatherley@gmail.com> wrote:
>
>
>>
>> I was wondering if it is possible to allow general access to an url after some account authenticated for this url. Without the necessity to adapt the web application for this
>>
>>
> Yes, that would be mod session and it’s related modules

No, that doesn't satisfy the following:

> If someone authenticates on https://www.example.com/webapp, the url is available for everyone.




--
Eric Covener
covener@gmail.com

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: allow general access after 1 auth [ In reply to ]
wefatherley at gmail
Aug 13, 2023, 5:44 AM
Post #4 of 5 (177 views)
Permalink
>
> No, that doesn't satisfy the following:
>
> > If someone authenticates on https://www.example.com/webapp, the url is
> available for everyone.


> Could the complicating allow directive sequence be placed in an if/else
type of scope that uses some elements of the deciding session?
Re: allow general access after 1 auth [ In reply to ]
dferradal at apache
Aug 13, 2023, 6:00 AM
Post #5 of 5 (177 views)
Permalink
El dom, 13 ago 2023 14:45, Will Fatherley <wefatherley@gmail.com> escribió:

>
>
>> No, that doesn't satisfy the following:
>>
>> > If someone authenticates on https://www.example.com/webapp, the url is
>> available for everyone.
>
>
>> Could the complicating allow directive sequence be placed in an if/else
> type of scope that uses some elements of the deciding session?


But why are you using deprecated Order, Allow,Deny directives , use
Require, still if I understand correctly what you want to do is not part of
the http scope, but more something related to programming.

>

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal