Basic authentication question.

29/04/2006, 13h26

I am running several virtual hosts. One of them is controlled by basic
authorisation. However its top level directory is not - to allow sign ups. So
we have

FOO - is the doc root and has an intro and a sign up page
FOO/BAR and below is controlled.

This all works fine. Now the site in question is for ex employees of a company
and some find the top page via a web search and all is fine. Some are given the
site address by existing members. However, in the latter case they are often
given <site>/BAR (which is what existing members often use) instead of <site>
and are promptly asked for an id & password they have not yet set up.

1) can I control the number of login attempts made?

2) can I then put out a page when 1) is exceeded?

TIA

--

Regards

Dave Saville

NB Remove -nospam for good email address

08/05/2006, 11h17

"Dave Saville" <dave@deezee-nospam.org> wrote in message
news:qnirqrrmrrbet.iyhsc30.pminews@news.aaisp.net. uk...
> I am running several virtual hosts. One of them is controlled by basic
> authorisation. However its top level directory is not - to allow sign ups.
So
>
> 1) can I control the number of login attempts made?
Nope. It is upto 'User agent' to decide when to stop asking for password.
For e.g. I.E. stops after 3 attempts, but Netscape won'tt.
>
> 2) can I then put out a page when 1) is exceeded?
Yes. You can change ErrorDocument for Error code 401.

This document always shown once 'User agent' decided to stop accepting
user creditentials.

>
> TIA
>
> --
>
> Regards
>
> Dave Saville
>
> NB Remove -nospam for good email address

regards.
Holla

08/05/2006, 11h17

"Dave Saville" <dave@deezee-nospam.org> wrote in message
news:qnirqrrmrrbet.iyhsc30.pminews@news.aaisp.net. uk...
> I am running several virtual hosts. One of them is controlled by basic
> authorisation. However its top level directory is not - to allow sign ups.
So
>
> 1) can I control the number of login attempts made?
Nope. It is upto 'User agent' to decide when to stop asking for password.
For e.g. I.E. stops after 3 attempts, but Netscape won'tt.
>
> 2) can I then put out a page when 1) is exceeded?
Yes. You can change ErrorDocument for Error code 401.

This document always shown once 'User agent' decided to stop accepting
user creditentials.

>
> TIA
>
> --
>
> Regards
>
> Dave Saville
>
> NB Remove -nospam for good email address

regards.
Holla

08/05/2006, 11h19

"Dave Saville" <dave@deezee-nospam.org> wrote in message
news:qnirqrrmrrbet.iyhsc30.pminews@news.aaisp.net. uk...
>
> 1) can I control the number of login attempts made?
Nope. It is upto 'User agent' to decide when to stop asking for password.
For e.g. I.E. stops after 3 attempts, but Netscape won'tt.
>
> 2) can I then put out a page when 1) is exceeded?
Yes. You can change ErrorDocument for Error code 401.

This document always shown once 'User agent' decided to stop accepting
user creditentials.

>
> TIA
> Regards
>
> Dave Saville

regards.
Holla

08/05/2006, 11h19

"Dave Saville" <dave@deezee-nospam.org> wrote in message
news:qnirqrrmrrbet.iyhsc30.pminews@news.aaisp.net. uk...
>
> 1) can I control the number of login attempts made?
Nope. It is upto 'User agent' to decide when to stop asking for password.
For e.g. I.E. stops after 3 attempts, but Netscape won'tt.
>
> 2) can I then put out a page when 1) is exceeded?
Yes. You can change ErrorDocument for Error code 401.

This document always shown once 'User agent' decided to stop accepting
user creditentials.

>
> TIA
> Regards
>
> Dave Saville

regards.
Holla

08/05/2006, 15h33

On Mon, 8 May 2006 14:49:28 +0530, Holla wrote:

>
>"Dave Saville" <dave@deezee-nospam.org> wrote in message
>news:qnirqrrmrrbet.iyhsc30.pminews@news.aaisp.net .uk...
>>
>> 1) can I control the number of login attempts made?
>Nope. It is upto 'User agent' to decide when to stop asking for password.
>For e.g. I.E. stops after 3 attempts, but Netscape won'tt.
>>
>> 2) can I then put out a page when 1) is exceeded?
> Yes. You can change ErrorDocument for Error code 401.
>
> This document always shown once 'User agent' decided to stop accepting
>user creditentials.

Thanks - works like a dream :-)

--

Regards

Dave Saville

NB Remove -nospam for good email address

08/05/2006, 15h33

On Mon, 8 May 2006 14:49:28 +0530, Holla wrote:

>
>"Dave Saville" <dave@deezee-nospam.org> wrote in message
>news:qnirqrrmrrbet.iyhsc30.pminews@news.aaisp.net .uk...
>>
>> 1) can I control the number of login attempts made?
>Nope. It is upto 'User agent' to decide when to stop asking for password.
>For e.g. I.E. stops after 3 attempts, but Netscape won'tt.
>>
>> 2) can I then put out a page when 1) is exceeded?
> Yes. You can change ErrorDocument for Error code 401.
>
> This document always shown once 'User agent' decided to stop accepting
>user creditentials.

Thanks - works like a dream :-)

--

Regards

Dave Saville

NB Remove -nospam for good email address

29/04/2006, 13h26	#1
Dave Saville Messages: n/a Hébergeur:	Basic authentication question. I am running several virtual hosts. One of them is controlled by basic authorisation. However its top level directory is not - to allow sign ups. So we have FOO - is the doc root and has an intro and a sign up page FOO/BAR and below is controlled. This all works fine. Now the site in question is for ex employees of a company and some find the top page via a web search and all is fine. Some are given the site address by existing members. However, in the latter case they are often given <site>/BAR (which is what existing members often use) instead of <site> and are promptly asked for an id & password they have not yet set up. 1) can I control the number of login attempts made? 2) can I then put out a page when 1) is exceeded? TIA -- Regards Dave Saville NB Remove -nospam for good email address

08/05/2006, 11h17	#2
Holla Messages: n/a Hébergeur:	Re: Basic authentication question. "Dave Saville" <dave@deezee-nospam.org> wrote in message news:qnirqrrmrrbet.iyhsc30.pminews@news.aaisp.net. uk... > I am running several virtual hosts. One of them is controlled by basic > authorisation. However its top level directory is not - to allow sign ups. So > > 1) can I control the number of login attempts made? Nope. It is upto 'User agent' to decide when to stop asking for password. For e.g. I.E. stops after 3 attempts, but Netscape won'tt. > > 2) can I then put out a page when 1) is exceeded? Yes. You can change ErrorDocument for Error code 401. This document always shown once 'User agent' decided to stop accepting user creditentials. > > TIA > > -- > > Regards > > Dave Saville > > NB Remove -nospam for good email address regards. Holla

08/05/2006, 11h17	#3
Holla Messages: n/a Hébergeur:	Re: Basic authentication question. "Dave Saville" <dave@deezee-nospam.org> wrote in message news:qnirqrrmrrbet.iyhsc30.pminews@news.aaisp.net. uk... > I am running several virtual hosts. One of them is controlled by basic > authorisation. However its top level directory is not - to allow sign ups. So > > 1) can I control the number of login attempts made? Nope. It is upto 'User agent' to decide when to stop asking for password. For e.g. I.E. stops after 3 attempts, but Netscape won'tt. > > 2) can I then put out a page when 1) is exceeded? Yes. You can change ErrorDocument for Error code 401. This document always shown once 'User agent' decided to stop accepting user creditentials. > > TIA > > -- > > Regards > > Dave Saville > > NB Remove -nospam for good email address regards. Holla

08/05/2006, 11h19	#4
Holla Messages: n/a Hébergeur:	Re: Basic authentication question. "Dave Saville" <dave@deezee-nospam.org> wrote in message news:qnirqrrmrrbet.iyhsc30.pminews@news.aaisp.net. uk... > > 1) can I control the number of login attempts made? Nope. It is upto 'User agent' to decide when to stop asking for password. For e.g. I.E. stops after 3 attempts, but Netscape won'tt. > > 2) can I then put out a page when 1) is exceeded? Yes. You can change ErrorDocument for Error code 401. This document always shown once 'User agent' decided to stop accepting user creditentials. > > TIA > Regards > > Dave Saville regards. Holla

08/05/2006, 11h19	#5
Holla Messages: n/a Hébergeur:	Re: Basic authentication question. "Dave Saville" <dave@deezee-nospam.org> wrote in message news:qnirqrrmrrbet.iyhsc30.pminews@news.aaisp.net. uk... > > 1) can I control the number of login attempts made? Nope. It is upto 'User agent' to decide when to stop asking for password. For e.g. I.E. stops after 3 attempts, but Netscape won'tt. > > 2) can I then put out a page when 1) is exceeded? Yes. You can change ErrorDocument for Error code 401. This document always shown once 'User agent' decided to stop accepting user creditentials. > > TIA > Regards > > Dave Saville regards. Holla

08/05/2006, 15h33	#6
Dave Saville Messages: n/a Hébergeur:	Re: Basic authentication question. On Mon, 8 May 2006 14:49:28 +0530, Holla wrote: > >"Dave Saville" <dave@deezee-nospam.org> wrote in message >news:qnirqrrmrrbet.iyhsc30.pminews@news.aaisp.net .uk... >> >> 1) can I control the number of login attempts made? >Nope. It is upto 'User agent' to decide when to stop asking for password. >For e.g. I.E. stops after 3 attempts, but Netscape won'tt. >> >> 2) can I then put out a page when 1) is exceeded? > Yes. You can change ErrorDocument for Error code 401. > > This document always shown once 'User agent' decided to stop accepting >user creditentials. Thanks - works like a dream :-) -- Regards Dave Saville NB Remove -nospam for good email address

Outils de la discussion
Afficher une version imprimable Envoyer un lien vers cette page par email