"Apache::AuthCookie allows you to intercept a user's first unauthenticated access to a protected document. The user will be presented with a custom form where they can enter authentication credentials. The credentials are posted to the server where AuthCookie verifies them and returns a session key.
The session key is returned to the user's browser as a cookie. As a cookie, the browser will pass the session key on every **subsequent accesses**. AuthCookie will verify the session key and re-authenticate the user."
----> Thats what its supposed to do.
Try this instead...
Creating a “members-only” section of your website...
- we will create a membersonly folder within the DocumentRoot à /
and give the Apache user and group access to it
- modify the httpd.conf file to create a new alias called /membersonly/…
Alias /membersonly/ “/
- add the following directives to httpd.conf…
<Location /membersonly/>
AuthName “Members-Only Access”
AuthType Basic
AuthUserFile /
require valid-user
</Location>
- AuthName creates a label that is displayed by the web browsers to the users. AuthType is always set to Basic because HTTP only supports Basic authentication by default.
- use the htpasswd utility to create the password file as below. The -c option is used to create the file and should be used just once. Make sure that only the Apache user can view the contents of this file and that the permissions on the file are 750.
/usr/local/apache/bin/htpasswd -c /
chris
- use the htpasswd utility (without the -c) to create additional users afterwards
Let us know if that works out any better for you.
ChrisP
------------------------------------------------------------------------------
If somebody helps you, please vote for them for "Tipmaster of the Week" by giving them a "purple star". This can be done by clicking the "Mark this post as a helpful/expert post" button.
