authentication to apache from zope
Hi, I have an site using Apache Zope VHM. I was wondering if the authentication could be passed on to Apache. For e.g. I have an apache folder : <apache_doc_root>/images/ which is password protected via htpasswd and has images that I would like apache to serve. The folder has a user called zope/zpass in the .htpasswd file. In zope I have a page that has the tag <img src=/ images/img1.jpg> Is there a way I can pass the authentication to apache (zope/zpass) so that the client can view the images and the username password doesnt appear in the client. Thanks AM -- ================================================================== Aseem Mohanty Neurobehavioral Systems Inc, 828 San Pablo Ave, Albany, CA 94706 (R) 510 7696011 (M) 510 3014871 (O) 510 5279231 ================================================================== "I saw `cout' being shifted "Hello world" times to the left and stopped right there!!" -- Steve Gonedes ==================================================================
AM wrote:
I have an apache folder : <apache_doc_root>/images/ which is password protected via htpasswd and has images that I would like apache to serve. The folder has a user called zope/zpass in the .htpasswd file.
In zope I have a page that has the tag <img src=/ images/img1.jpg>
Is there a way I can pass the authentication to apache (zope/zpass) so that the client can view the images and the username password doesnt appear in the client.
Not directly, its not zope asking apache for the image, its the client. Its not clear why you would desire this though, there are ways to sort of kludge it into working, but without knowing exactly what you're trying to accomplish I'm hesitent to suggest them. -- Jamie Heilman http://audible.transient.net/~jamie/ "You came all this way, without saying squat, and now you're trying to tell me a '56 Chevy can beat a '47 Buick in a dead quarter mile? I liked you better when you weren't saying squat kid." -Buddy
Jamie Heilman wrote:
AM wrote:
Its not clear why you would desire this though, there are ways to sort of kludge it into working, but without knowing exactly what you're trying to accomplish I'm hesitent to suggest them.
To prevent unauthorised access of those images yet have apache serve them out. AM -- ================================================================== Aseem Mohanty Neurobehavioral Systems Inc, 828 San Pablo Ave, Albany, CA 94706 (R) 510 7696011 (M) 510 3014871 (O) 510 5279231 ================================================================== "I saw `cout' being shifted "Hello world" times to the left and stopped right there!!" -- Steve Gonedes ==================================================================
AM wrote:
To prevent unauthorised access of those images yet have apache serve them out.
Well, if 'unauthorized' is users not authenticated to a http realm then you can synchronize your realm-names and user databases between zope and apache to achieve this. If 'unauthorized' is something more like "users A requests page B and therefore may also request images C D and E" though, you might as well start looking into a local filesystem product or storing your images in zope right now. -- Jamie Heilman http://audible.transient.net/~jamie/ "Most people wouldn't know music if it came up and bit them on the ass." -Frank Zappa
participants (2)
-
AM -
Jamie Heilman