Home  |  METU  |  
Frequently Asked Questions  |  IT Resources Use Policy  |  Job Opportunities  |  Site Map  |  Contact Info
 
 
Network Services
E-mail Services
User Support
Web Services
E-services
Licensed Software
Security
Facilities
About CC
 
Announcements and Events
Policies & Rules
Publications & Documents
Forms


Admin Panel
  >> Web Services   >> Creating Web Pages on Central Servers   >> General Information >>Points to Ponder about HTACCESS
 Printer friendly view
Türkçe versiyonu
Points to Ponder about HTACCESS

1) Using a file including user code information for authorizing web pages:

If an ".htaccess" file is created to invoke the information of authorized usercodes existing in another file, full path address including corresponding home directory of that file must be specified. (You can use "pwd" command in order to learn your home directory).

It is a security requirement that the password file should not be located in "wwwhome" directory. 

For example:

The address of the file including the information of usercodes (in this example, "passwd" file in "/home_directory/user/abc/" directory) must be specified as;

AuthName title_to_be_displayed_on_logon_dialog_window
AuthType Basic
AuthUserFile /home_directory/user/abc/passwd
require user usercode

in ".htaccess" file. 

You can use "htpasswd" command to create the file containing the user and corresponding password information. The detailed information about htpasswd command is available in the following address:
http://httpd.apache.org/docs/2.0/en/programs/htpasswd.html

2) Using the passwords defined on central servers for authorizing specific usercodes:

If the passwords defined on central servers will be used for authorizing specific usercodes, ".htaccess" file should be created as below:

AuthName title_to_be_displayed_on_logon_dialog_window
AuthType Basic
AuthBasicProvider ldap
AuthzLDAPAuthoritative Off
AuthLDAPURL "ldap://auth.metu.edu.tr/ou=People,dc=metu,dc=edu,dc=tr"
require user usercode1
require user usercode2
require user usercode3
 
NOTE: Any number of usercodes defined on central servers can be added as in "require user usercode#" rows.

3) Using the passwords defined on central servers for authorizing specific usercode categories:

If the passwords defined on central servers will be used for authorizing specific usercode categories (e.g., research assistants (minor category) in ABC department (major category)), ".htaccess" file should be created as below:

AuthName title_to_be_displayed_on_logon_dialog_window
AuthType Basic
AuthBasicProvider ldap
AuthzLDAPAuthoritative Off
AuthLDAPURL ldap://auth.metu.edu.tr/ou=People,dc=metu,dc=edu,dc=tr?uid??(&(major=ABC)(minor=rsc))

In order to see the major and minor definitions of usercodes, "id usercode" command can be used. This command can be used while being connected to central servers.

For example;

As the command "id abcde " is used to learn the major and minor categories of usercode "abcde ", assume that following output has been displayed:

uid=1049(abcde) gid=10044(asd_rsc)

This information reveals that, "abcde " usercode belongs to a "research assistant" working in a department/unit having the ECS (Electronic Communication System) usercode of "asd".

Some of the minor categories are listed below:

  bs Undergraduate student
  rsc Research assistant
  ms Graduate student
  phd Doctoral student
  aca Academic personnel
  adm Administrative personnel
  spc Special student

Major categories of departments/units can be learned from the page "Electronic Communication System Usercodes List" including the information of usercodes defined for departments/units.

To have detailed information about authorizing usercode categories using LDAP application, please visit the page General Information about LDAP".

Last update: 2010-10-12 13:34:24
 
©METU Computer Center 2009 | Feedback | About Site