client can't log in with correct user name and password

Forum Moderators: phranque

Message Too Old, No Replies

client can't log in with correct user name and password

shsavage

9:34 pm on Mar 12, 2006 (gmt 0)

Greetings,

I'm running XAMPP under Windows XP. I have a very simple .htaccess and .htpasswd file, designed only to require a valid user to a single folder on an experimental web site. I can get in with the user name and password from anywhere I've tried it, but some people overseas cannot, even when they type the correct user name and password. Is this something that I'm blocking by accident? I'm pretty new to Apache.

Thanks,

-Steve
-------------------------------
Here is my .htaccess file:

AuthName "Protected Area"
AuthType Basic
AuthUserFile C:/xampp/.htpasswd
require valid-user

--------------------------------
And here is the .htpasswd file:

testuser:testuser

coopster

11:48 pm on Mar 12, 2006 (gmt 0)

Welcome to WebmasterWorld, shsavage.

When using per-directory override files (.htaccess) you need to use the Apache htpasswd utility to create and edit the password file. If you can see the password, it is likely you didn't use the utility. Here is a must-read doc from Apache to get you on track:

[httpd.apache.org...]

shsavage

2:52 pm on Mar 13, 2006 (gmt 0)

Thanks, Coopster! I've been using Notepad to create the .htpasswd file, which is clearly wrong according to the documentation you pointed out. What mystifies me is that I can get in to the area with the user name and password created with Notepad from anywhere I've ever tried it, but my firends in Jordan cannot. Why should this be the case?

-Steve

shsavage

8:54 pm on Mar 13, 2006 (gmt 0)

Coopster,

As it turns out, following the instructions from the Apache documentation had no effect on the ability of my colleagues in Jordan being able to get in to the site with the correct user name and password. They keep entering the proper info, and the password screen just keeps repeating; it seems that it isn't passing the information through to .htaccess. Any ideas?

-Steve

coopster

1:38 pm on Mar 14, 2006 (gmt 0)

I'm surprised that you were able to ... that sets off some red flags immediately. Were you prompted with the authorization access window? If you are and you can access, there should be no reason an external request shouldn't unless you are blocking it at the firewall, your configuration, etc.

The first place to check would be your log files to see what is going on.

shsavage

2:28 pm on Mar 14, 2006 (gmt 0)

Yes, i can see the User name / password screen, and gain entry with the testuser:testuser account. By my colleagues in Jordan just keep getting the password form over and over. I'll check the logs and get back to you on it.

-Steve

shsavage

2:37 pm on Mar 14, 2006 (gmt 0)

What i'm getting in the error log are entries like this: [Tue Mar 14 00:44:55 2006] [error] [client 213.186.167.139] user testuser not found: /xampp/

I don't get it at all, since it see testuser if I log on, but not if my colleagues in Jordan try it.

-Steve

coopster

1:00 am on Mar 15, 2006 (gmt 0)

There should be an error right before that one as well, something that is probably telling you that

[Tue Mar 14 00:44:55 2006] [error] [client nnn.nnn.nnn.nnn] The system cannot find the file specified. : Could not open password file: C:/xampp/.htpasswd

Ask your users which link they are trying to open in their browser, then look at the .htaccess file specifics you have in that directory.