webdav : digest authentication

Sundar Nagarajan sun.nagarajan at gmail.com
Thu May 20 05:57:04 UTC 2010 

Clément Février wrote:
> He explained me the emails are not organized if replying instead 
> creating a new one.
> See this page :
> https://lists.ubuntu.com/archives/ubuntu-users/2010-May/thread.html
> (here, we can see my message in an other thread)

I see that you have tried really hard posting your query on various 
relevant groups. I am not an expert on WebDav, but let me try to be of 
some help.

> Clément: Does the apache user/group has read permissions to
> /home/www/www/webdav/passwd.dav ?
> Not sure if it is required, but if it is set to root, I'll give it a try.
> 
> I'm not sure to know what's the apache user/group. The file have the 
> following rights :
> 
> -rw-r--r-- 1 root root 48 2010-05-14 21:31 /home/www/www/webdav/passwd.dav
> 
> Using ps aux, I saw most of apache daemons are started by www-data.
> Well, I did chown www-data:www-data on the file (assuming www-data is 
> the right user and group). Still not working.

The files under the webdav Location should be owned by the Apache user 
(typically www-data). Without this, Webdav will be broken.

Typically the AuthDigest file is stored OUTSIDE the Apache Document 
root, and need NOT be (probably SHOULD NOT, but I am not sure) be owned 
by the Apache user, but by root.

> Next I added my user (clement) to the www-data group. Same issue, but 
> there is a little difference in the logs :

This is definitely not required (advisable) at all. The Webdav user 
namespace is completely separate from the Linux user/group namespace. 
This I am sure about. I cannot explain error directly, but adding the 
Webdav user to the Linux Apache group is not the answer for sure.

Take a look at this HOWTO for setting up Apache/WebDav/Digest AUTH on 
Debian:
http://www.debian-administration.org/articles/285

Only additional question I can think of asking is: did you enable the 
auth_digest module and create the AuthDigestFile using htdigest (I guess 
you did from one of your earlier posts)?

See this line in the HOWTO I referenced
a2enmod auth_digest
htdigest -c /home/srw/digest-password webdav-example myuser

Also (from one of your earlier posts), I see you are referencing 
AuthUserFile rather than AuthDigestFile in your Apache conf.

And, from the HOWTO I referenced, the correct syntax is:
	Require valid-user


-- 
Sundar Nagarajan
Linux User #170123 | Ubuntu User #2805

More information about the ubuntu-users mailing list