Re: some authentication questionson webserver.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

In article <6b07a80.0306270101.52aaafc@posting.google.com>, DukeNM wrote:
>
> but i have a few questions.

Didn't we just have some of these questions?

> 1) Is authentication possible via SSL itself or is external module
> like mod_digest, mod_auth, etc. is required.

This question I can't answer very well, but I believe that you'd
need some other Apache module to authenticate using the SSL connection.
You'd be best to check the various Apache SSL sites to see what
they support.

> 2) after my authentication the problem is that, the username/pass is
> stored in the cache i guess. so if i try after a few minutes the same
> URL access is provided directly without any authentication.
> so is there a way to disable this caching and ask for authentication
> everytime, irrelevant of time, url etc.

Assuming you're talking about HTTP Basic authentication, then no, because....

> 3) is this caching taking place on serverside or clientside.

the caching is done by the client, and the server has no control over
the caching of the client. (As Joshua noted in another extremely
similar thread, the client must send the authentication information
with every HTTP request, so the server has no idea whether the browser
is caching or not.)

- --keith

- --
kkeller-mmmspam@wombat.san-francisco.ca.us
(try just my userid to email me)
alt.os.linux.slackware FAQ: http://wombat.san-francisco.ca.us/cgi-bin/fom

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org

iEYEARECAAYFAj78aJEACgkQhVcNCxZ5ID9a5ACfUqVR12x83g 67mc+UXbK9F71B
PtUAnj+bSjpNZV9uquPgNgWWm5GqAyRu
=UXnB
-----END PGP SIGNATURE-----