Ping a Specific Port

Question

ZZ9

Asked: 2015-07-24 02:39:42 +0800 CST2015-07-24 02:39:42 +0800 CST 2015-07-24 02:39:42 +0800 CST

How to stop Apache HTTPS ReverseProxy passing basic auth to TomCat

772

Apache currently interogates the user for their basic auth credentials, once the correct details are entered it passes basic auth credentials to the tomcat server it's proxying. This confuses the app which tried to use the basic auth creds as a login.

I would like to stop apache passing this information on.

I have configured apache using the following configuration:

<VirtualHost *:443>
    ServerName  app.company.co.uk
    SSLProxyEngine On
    ProxyRequests Off
    <Proxy *>
    Order deny,allow
    Deny from all
    Allow from all
    </Proxy>
    <Location />
            AuthType Basic
            AuthName "Basic Auth"
            AuthUserFile /var/path/.htpasswd
            Require user user
            Satisfy any
            Deny from all
            Allow from 172.16.0.0/21
    </Location>
    ProxyPreserveHost On
    ProxyPass / http://app.company.co.uk:7190/
    ProxyPassReverse / http://app.company.co.uk:7190/
</VirtualHost>

1 Answers

Voted

sam_pan_mariusz · Answer 1 · 2015-07-24T03:04:10+08:00

sam_pan_mariusz

2015-07-24T03:04:10+08:002015-07-24T03:04:10+08:00

I had a similar case in the past. Add RequestHeader unset "Authorization".

0

How to stop Apache HTTPS ReverseProxy passing basic auth to TomCat

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?