<div dir="ltr"><br><br><div class="gmail_quote">On Sun, Sep 4, 2011 at 1:25 AM, Maxim Dounin <span dir="ltr"><<a href="mailto:mdounin@mdounin.ru">mdounin@mdounin.ru</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
Hello!<br>
<div class="im"><br>
On Sun, Sep 04, 2011 at 12:02:34AM +0300, Nginx User wrote:<br>
<br>
> Is the any documentation for the http_auth_request_module anywhere? Trying<br>
> to find out what the configuration parameters are if any.<br>
<br>
</div>Try README in the module tarball. Alternatively, you may find it<br>
here:<br></blockquote><div><br></div><div><br></div><div>Hi Thanks for that.</div><div><br></div><div>To clarify, My understanding of how this works is that when a request from a client (I'll call this "Client Request") hits Nginx, the module handler will spin off a request (I'll call this "Module Request") to a location where I would have arranged for authentication to occur. This can be auth basic etc or my own custom process. Assuming my own custom process, I should arrange for it to return status code "200" to allow access, status code "403" to deny access or status code "401" to ask for username and password (responding by 200, 403 or 401 as required). When the module receives a "200" code for the Module Request, it will pass the Client Request on through to the next normal stage of Nginx processing. If a "403" code is received, The user is sent the same and processing stops.</div>
<div><br></div><div>Four queries:</div><div><br></div><div>1. Is my understanding of the process correct?</div><div>2. When the README says "it is not currently possible to use proxy_cache/proxy_store (and fastcgi_cache/fastcgi_store) for requests initiated by auth request module", does this apply to the Module Request only as it suggests and that the Client Request will proceed as normal or is there a twist to it?</div>
<div>3. Does the module cover "post" requests as well</div><div>4. I notice "proxy_set_header X-Original-URI $request_uri;" in the README example. Is this a requirement?</div><div><br></div><div><br></div>
<div>Thanks again</div></div></div>