[modauthkerb] Selective kerberizing of Apache
Brought to you by:
kouril
From: Pressman, S. D <ste...@lm...> - 2009-12-03 16:00:42
|
I'd like to have mod_auth_kerb secure most of my site, but not everything. For instance, I want to do a <LocationMatch> for my feed paths so that they can be anonymously consumed. Unfortunately, I cannot seem to make mod_auth_kerb selectively permission my different Locations. I have <LocationMatch /*> with my mod_auth_kerb configuration, and a selective <LocationMatch> for the feeds with "Allow from all". The <LocationMatch> for my feeds has Allow From All, with no reference to mod_auth_kerb at all. It exists before the /* entry. But it still gives me a 401. Even when I change /* to an exclusionary regexp to eliminate the feeds, the behavior remains. BTW, this cannot run on different virtualhosts. It must stay in place on the single virtualhost due to restrictions in the app. Any advice would be greatly appreciated. Thanks for your help. -Steve Pressman |