Skip to content


Subversion checkout URL

You can clone with
Download ZIP
Browse files

Fixed #4437: added notes to the modpython auth handler documentation …

…about using the handler with Apache 2.2. Thanks to Paul Bissex for the beginnings of the patch, and Graham Dumpleton for the rest of the info.

git-svn-id: bcc190cf-cafb-0310-a4f2-bffc1f526a37
  • Loading branch information...
1 parent 41e622e commit fc478a0fe83bac8c7dd7c6112aaea373e2c3f533 @jacobian jacobian committed
Showing with 45 additions and 2 deletions.
  1. +45 −2 docs/apache_auth.txt
47 docs/apache_auth.txt
@@ -21,14 +21,57 @@ file, you'll need to use mod_python's ``PythonAuthenHandler`` directive along
with the standard ``Auth*`` and ``Require`` directives::
<Location /example/>
- AuthType basic
+ AuthType Basic
AuthName ""
Require valid-user
SetEnv DJANGO_SETTINGS_MODULE mysite.settings
PythonAuthenHandler django.contrib.auth.handlers.modpython
+.. admonition:: Apache 2.2
+ If you're using Apache 2.2, you'll need to take a couple extra steps.
+ You'll need to ensure that ``mod_auth_basic`` and ``mod_authz_user``
+ are loaded. These might be compiled staticly into Apache, or you might
+ need to use ``LoadModule`` to load them dynamically (as shown in the
+ example at the bottom of this note).
+ You'll also need to insert configuration directives that prevent Apache
+ from trying to use other authentication modules. Depnding on which other
+ authentication modules you have loaded, you might need one or more of
+ the following directives::
+ AuthBasicAuthoritative Off
+ AuthDefaultAuthoritative Off
+ AuthzLDAPAuthoritative Off
+ AuthzDBMAuthoritative Off
+ AuthzDefaultAuthoritative Off
+ AuthzGroupFileAuthoritative Off
+ AuthzOwnerAuthoritative Off
+ AuthzUserAuthoritative Off
+ A complete configuration, with differences between Apache 2.0 and
+ Apache 2.2 marked in bold, would look something like:
+ .. parsed-literal::
+ **LoadModule auth_basic_module modules/**
+ **LoadModule authz_user_module modules/**
+ ...
+ <Location /exmaple/>
+ AuthType Basic
+ AuthName ""
+ **AuthBasicAuthoritative Off**
+ Require valid-user
+ SetEnv DJANGO_SETTINGS_MODULE mysite.settings
+ PythonAuthenHandler django.contrib.auth.handlers.modpython
+ </Location>
By default, the authentication handler will limit access to the ``/example/``
location to users marked as staff members. You can use a set of
``PythonOption`` directives to modify this behavior:

0 comments on commit fc478a0

Please sign in to comment.
Something went wrong with that request. Please try again.