topic Re: UserDir on CWS 1.3-1 on Itanium Problems in Operating System - OpenVMS

UserDir on CWS 1.3-1 on Itanium Problems

RF Thomas — Fri, 24 Feb 2006 12:50:00 GMT

We can't seem to get access using a user area to work:

http:///~

e.g.

http://mynode.com/~xyz

We get a 403 Forbidden message displayed.

Our httpd.conf file had the following code:

# UserDir: The name of the directory which is appended onto a user's home
# directory if a ~user request is received.
#
UserDir public_html

#
# Control access to UserDir directories. The following is an example
# for a site where these directories are restricted to read-only.
#

Options Indexes FollowSymLinks Multiviews +ExecCGI
AllowOverride None
AuthType Basic
AuthName "OpenVMS Authentication"
AuthOpenVMSUser On
Require valid-user

Re: UserDir on CWS 1.3-1 on Itanium Problems

Ken Robinson — Fri, 24 Feb 2006 13:37:35 GMT

Does the user that the webserver is running under (usually apache$www) have read & execute privileges for the directory [.public_html...]?

Ken

Re: UserDir on CWS 1.3-1 on Itanium Problems

RF Thomas — Fri, 24 Feb 2006 14:47:16 GMT

Yes. Full access.

Re: UserDir on CWS 1.3-1 on Itanium Problems

Karl Rohwedder — Fri, 24 Feb 2006 16:04:57 GMT

Are the real user directories under /home or have you mapped it accordingly (or was this just an example)?

regards Kalle

Re: UserDir on CWS 1.3-1 on Itanium Problems

RF Thomas — Fri, 24 Feb 2006 16:11:30 GMT

The configuration file fragement is what sits in my HTTPD.CONF file.

Re: UserDir on CWS 1.3-1 on Itanium Problems

Volker Halle — Sat, 25 Feb 2006 06:06:17 GMT

Does the WEBserver account also have at least 'E' access to all the directories above [.public_html] ?

Volker.

Re: UserDir on CWS 1.3-1 on Itanium Problems

RF Thomas — Mon, 27 Feb 2006 10:48:57 GMT

Yes.

It never prompts for username/password. We can access a specific web page by entering it, e.g.

http://node/~user/page.htm

This is worthless to us, since we want to control access by username and password. Additionally, we want the APACHE (CWS) execution context changed to the user's login.

Re: UserDir on CWS 1.3-1 on Itanium Problems

Jan van den Ende — Mon, 27 Feb 2006 12:01:03 GMT

RF,

you may try the info in

http://h71000.www7.hp.com/openvms/products/ips/apache/csws_install_001.html#
modauthsecurity

Basically, it describes how to get a username/password screen. Validates against your default VMS login ( normally SYSUAF, but should also honour any defined alternate)

It helped me a lot!

Proost.

Have one on me.

jpe

Re: UserDir on CWS 1.3-1 on Itanium Problems

RF Thomas — Mon, 27 Feb 2006 12:30:32 GMT

We have gotten further in our struggle learning the idiosyncracies of CWS/APACHE:

The /home option was implemented as a special symbol in CWS incompletely. The following allows username and password, for such to work all users need to share a common rooted directory. We have not tested if a virtual directory can have UserDir commands.

The following works:

UserDir /ast$root/*/public_html

Options Indexes FollowSymLinks Multiviews +ExecCGI
AddHandler cgi-script com exe
AllowOverride None
AuthType Basic
AuthName "OpenVMS Authentication"
AuthOpenVMSUser On
Require valid-user

Unfortunately, we can not get CGI to work. Using the example .exe provided with CWS and copying it to the /public_html directory with protection of (SY:RWED,OW:RWED,GR:RWED,WO:RWED) the execution fails with an Internal Server Error page being displayed.

We need ot have the authorized user have his proper account and other information.