From nobody@hyperreal.com Fri Apr 4 12:11:34 1997 Received: (from nobody@localhost) by hyperreal.com (8.8.4/8.8.4) id MAA05326; Fri, 4 Apr 1997 12:11:34 -0800 (PST) Message-Id: <199704042011.MAA05326@hyperreal.com> Date: Fri, 4 Apr 1997 12:11:34 -0800 (PST) From: Joanna Gaski Reply-To: jgaski@wpi.edu To: apbugs@hyperreal.com Subject: causes two password queries unless given fqdn. X-Send-Pr-Version: 3.2 >Number: 315 >Category: config >Synopsis: causes two password queries unless given fqdn. >Confidential: no >Severity: non-critical >Priority: medium >Responsible: apache >State: closed >Class: sw-bug >Submitter-Id: apache >Arrival-Date: Fri Apr 4 12:20:02 1997 >Last-Modified: Mon Apr 7 17:42:08 PDT 1997 >Originator: jgaski@wpi.edu >Organization: >Release: 1.2b7 >Environment: Digital Unix 4.0B, cc compiler >Description: This problem occurs when using the new "satisfy any" match ability for .htaccess files. Using this .htaccess file in /info/test: satisfy any order deny,allow deny from all allow from bert.wpi.edu Authname test AuthType Basic AuthUserFile /www/docs/info/test/passwd require valid-user errordocument 403 http://www.wpi.edu/Stratplan/sorry.html When a request is made for the page from another domain, Netscape queries the user twice for their password, UNLESS the URL for the requested page contains the server's fully qualified domain name, with the domain in all caps. In this case, the user is only queried once. >How-To-Repeat: No, because you aren't in our password file. It should be easy to recreate on another system. >Fix: It may be that the time it takes the webserver to qualify the domain name is causing the problem. Another clue would be that the two password validation boxes are different sizes, meaning that they are generated in different parts of the code. Sorry can't help more >Audit-Trail: State-Changed-From-To: open-closed State-Changed-By: marc State-Changed-When: Mon Apr 7 17:42:07 PDT 1997 State-Changed-Why: As per an earlier response, nothing Apache can really do about this; it is a protocol problem (not bug, just lack of a feature) that is not easily resolved. >Unformatted: