Question

Will try not to let frustration come thru on info. I am unable to get TWiki to recognize registered users. Basic Parameters:

1. SSL as a vhost - successful
2. copied and modified bin/.htaccess
3. bin/testenv runs - only errors are a reminder that my apache user is other than nobody and the localization variable.
4. copied TWikiRegistrationPub.txt to TWikiRegistration.txt
5. registered as a user - received email confirmation
6. And yes, I worked from the installation guide.

Come what mat though , I can't get the prompt for authentication or get Twiki to recognise me as a registered user. will be glad to email testenv output on request.

Environment

-- LeonSonntag - 06 Apr 2004

Answer

its just possible that you are using Apache 2, and so need to use a different configuration I've never gotten an apache2 config that worked for me, but thats mostly due to lack of seriaous trying. There are some people that have had a go though, so they will hopefully be in soon (otherwise i'll have some more to learn to help you)

-- SvenDowideit - 06 Apr 2004

May be worse checking "AllowOverride" in the httpd.conf file. Apache will not look at .htaccess file if this is not allowed in the config file.

-- MarcelTrap - 06 Apr 2004

I am running a virtual host. My conf looks like this:

<VirtualHost *:443>
ServerName wikki.server.com
DocumentRoot /home/httpd/twiki
ServerAdmin root@server.com
ErrorLog logs/wikki/ssl_error_log
TransferLog logs/wikki/ssl_access_log
CustomLog logs/wikki/ssl_request_log \
          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /etc/httpd/conf/ssl.crt/wikki.server.com.crt
SSLCertificateKeyFile /etc/httpd/conf/ssl.key/wikki.server.com.key
SSLCertificateChainFile /etc/httpd/conf/ssl.crt/ca.crt

SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire
<Files ~ "\.(cgi|shtml|phtml|php3?)$">
    SSLOptions +StdEnvVars
</Files>

ScriptAlias /bin/ "/home/httpd/twiki/bin/"
Redirect https://wikki.server.com/index.html https://wikki.server.com/bin/view
ErrorDocument 401 /bin/oops/TWiki/TWikiRegistration?template=oopsauth

<Directory "/home/httpd/twiki/bin">
    Options +ExecCGI
    SetHandler cgi-script
    Allow from all
 </Directory>
 <Directory "/home/httpd/twiki/pub">
    Options FollowSymLinks +Includes
    AllowOverride None
    Allow from all
 </Directory>
 <Directory "/home/httpd/twiki/data">
    deny from all
 </Directory>
 <Directory "/home/httpd/twiki/templates">
    deny from all
</Directory>

SetEnvIf User-Agent ".*MSIE.*" \
         nokeepalive ssl-unclean-shutdown \
         downgrade-1.0 force-response-1.0

</VirtualHost>

-- LeonSonntag - 06 Apr 2004

see: http://httpd.apache.org/docs-2.0/howto/htaccess.html

If you don't want to set "AllowOverride AuthConfig" instead of "AllowOverride None" you can add the 4 lines below in your httpd.conf file under

AuthUserFile  /etc/httpd/htpasswd
AuthType Basic
AuthName "BlaBla"
require valid-user

Good luck!

-- MarcelTrap - 06 Apr 2004

Oh, I have NO problem with setting "AllowOverride AuthConfig" on both the pub and bin folders! However, upon webserver reboot to effect the changes, I am locked out of everything, from the "starting points" hyperlink on.

Tried commenting out the "AllowOverride AuthConfig" and adding your suggested 4 lines. Still got error. Just different one.

Authorization Required This server could not verify that you are authorized to access the document requested. Either you supplied the wrong credentials (e.g., bad password), or your browser doesn't understand how to supply the credentials required.

Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request

Also found a strange error in my Apache error log:

[Wed Apr 07 16:58:01 2004] [error] [client 192.168.0.12] File does not exist: /home/httpd/twiki/https:, referer: https://wikki.server.com/
[Wed Apr 07 16:58:20 2004] [error] [client 192.168.0.12] File does not exist: /home/httpd/twiki/https:
[Wed Apr 07 16:58:25 2004] [error] [client 192.168.0.12] File does not exist: /home/httpd/twiki/https:, referer: https://wikki.server.com/

-- LeonSonntag - 07 Apr 2004

Questions: When you say locked out : what is in your .htaccess file and what does the apache access.log contain ?

Authorization required: Do you get the prompt for your username/password ? what is in /etc/httpd/htpasswd ? access.log ?

May be worse moving your document root to a directory containing only an index.html file and try make Authorization work there (outside twiki) first.

-- MarcelTrap - 08 Apr 2004

IT NOW WORKS!!!! yea.  What I found was:
1)I needed to move the bin/.htaccess info to the website conf file.  
  Something the Apache website recommends anyway for performance
2)I moved the password file out of the webviewable area

Thanks again!!! -- LeonSonntag - 09 Apr 2004