Modified example for mod_rewrite to not add Authorization header if i…

…t is not set in the request
symfony · May 22, 2012 · 0935964 · 0935964
1 parent 517ae43
commit 0935964
Showing 1 changed file with 3 additions and 1 deletion.
diff --git a/src/Symfony/Component/HttpFoundation/ServerBag.php b/src/Symfony/Component/HttpFoundation/ServerBag.php
@@ -44,11 +44,13 @@ public function getHeaders()
         } else {
             /*
              * php-cgi under Apache does not pass HTTP Basic user/pass to PHP by default
-             * For this workaround to work, add this line to your .htaccess file:
+             * For this workaround to work, add these lines to your .htaccess file:
+             * RewriteCond %{HTTP:Authorization} ^(.+)$
              * RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
              *
              * A sample .htaccess file:
              * RewriteEngine On
+             * RewriteCond %{HTTP:Authorization} ^(.+)$
              * RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
              * RewriteCond %{REQUEST_FILENAME} !-f
              * RewriteRule ^(.*)$ app.php [QSA,L]