Skip to content

Commit

Permalink
Don't use AuthFormLoginRequiredLocation in inline
Browse files Browse the repository at this point in the history
Intro to inline says:

If a non-authenticated user attempts to access a page protected by
mod_auth_form that isn't configured with a AuthFormLoginRequiredLocation
directive, a HTTP_UNAUTHORIZED status code is returned to the browser
indicating to the user that they are not authorized to view the page.

The entire point seems to be to keep the URL the same by using an internal redirect 
via ErrorDocument, and AuthFormLoginRequiredLocation conflicts with it.

Submitted By: Rishikeshan Lavakumar/Sulochana <oss AT @rishikeshan.com> 



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1922246 13f79535-47bb-0310-9956-ffa450edef68
  • Loading branch information
covener committed Dec 1, 2024
1 parent b9b6f65 commit 7195b5a
Showing 1 changed file with 0 additions and 1 deletion.
1 change: 0 additions & 1 deletion docs/manual/mod/mod_auth_form.xml
Original file line number Diff line number Diff line change
Expand Up @@ -212,7 +212,6 @@ ErrorDocument 401 "/login.shtml"
AuthUserFile "conf/passwd"
AuthType form
AuthName /admin
AuthFormLoginRequiredLocation "http://example.com/login.html"
Session On
SessionCookieName session path=/
</highlight>
Expand Down

0 comments on commit 7195b5a

Please sign in to comment.