CentOS Apache: basic auth returning 403 instead of 401

centoshttp-basic-authenticationhttp-status-code-403httpd

I have three dirs in /var/www/html, one of them has .htacces with following:

Order Allow, Deny
Allow from all
AuthUserFile /var/www/.htpasswd
AuthGroupFile /dev/null
AuthName 'lalalal'
AuthType Basic

Require user lala

When sending request to that dir, server returns 403 instead of 401.
When requesting other dirs, server returns 200.
What is also interesting is that when checking server-info page, there is not a single line refering to protected dir, nor its siblings.

Edit

Error log shows:
'Permission denied: /var/www/html/drugi/.htaccess pcfg_openfile: unable to check htaccess file, ensure it is readable'
.htaccess file has 644 permissions.

Best Answer

Order Allow, Deny
Allow from all

These are not required if you're using HTTP authentication and you can get rid of them. (And Order breaks if there is whitespace after the comma.)

BTW, it's a good idea to keep your htpasswd file outside the web documents directory.

Since you've updated your question with additional information, I would say that you should also check the permissions in the directory with ls -alZ to check both the Unix permissions and the SELinux contexts.

Related Solutions

Centos – WebDAV on CentOS – getting 403 error when attempt to upload

I recently struggled with the same problem on my Fedora 10 system. In my case the culprit was some odd redirection that I was doing in Apache. Specifically, I use a content management system (Drupal, to be exact) that within it's .htaccess includes the following redirection logic to redirect missing files to a PHP script:

# Rewrite URLs of the form 'x' to the form 'index.php?q=x'.
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_URI} !=/favicon.ico
RewriteRule ^(.*)$ index.php?q=$1 [L,QSA]

It makes sense that the above only affects the PUT method since in that case REQUEST_FILENAME does not exist.

Not having the WebDAV area inside of the Drupal area, which seems like a reasonable constraint, fixes the problem.

Also, I think it is likely that SELinux would result in a different error, but it's not mentioned in the discussion above. Did you try disabling SELinux?

CentOS Apache HTTPD Configuration (403 Forbidden)

You are using a stock install of CentOS, if that is correct please check that if SELinux is in Enforcing mode

getenforce

if the result is "Enforcing"

temporally change it to permissive

setenforce 0

and try again, you can also guide the condition of web content to the files in your home directory.

Best Answer

Related Solutions

Centos – WebDAV on CentOS – getting 403 error when attempt to upload

CentOS Apache HTTPD Configuration (403 Forbidden)

Related Topic