Hi,

I have an AS400 set up at V5R3 with Apache and am trying to download an
object from the IFS using IE5.5 or greater.
The user is required to have authority to the folder containing the object
and is prompted for an AS400 userid and password.

The equivalent scenario works correctly on a non-Apache HTTP server at V4R5
and V5R1.

When trying to access a file on the IFS via the web I am receiving the
following message
in the error log for the Apache Sever:

 (3401)Permission denied.: ZSRV_MSG064B: access to
/download/download1/test.zip denied.

The test.zip object has public access permissions.
The "download1" folder containing the object does not have public read/write
execute permissions on it but does have these 
permissions for another user profile. In the server confguration file, the
download folder is password protected as follows:

<Directory /download/download1/>
AllowOverride None
AuthName download
ProfileToken off
AuthType Basic
order allow,deny
allow from all
UserID %%CLIENT%%
PasswdFile %%SYSTEM%%
require valid-user
</Directory>

The desired functionality is that when the user enters the url
http://hostname/download/download1/test.zip 

The user is prompted for a username and password. This username is used to
check the folder's permissions
before allowing access to the file.

If I add QTMHHTTP to the list of users with execute permission for the
download1 folder, the problem seems to be resolved.

Why does V5R3 (with Apache) seem to require QTMHHTTP to be specified on an
IFS folder in order for the 
above Apache configuration to come into effect?

Is the access to the IFS folder take precedence over the protection setup in
the Apache Server configuration file?

Has security been modified in this respect?

Regards
Derek Butler
Analyst/Programmer
Neller Software
Tel: +61 (08) 8139 1859
email:derekb@xxxxxxxxxxxxx





****************************************************************************
***
 This email and any files transmitted with it are confidential and are
intended solely for the use of the individual or entity to whom they are
addressed. This communication represents the originator's personal views and
opinions, which do not necessarily reflect those of Neller Software. If you
are not the original recipient or the person responsible for delivering the
email to the intended recipient, be advised that you have received this
email in error, and that any use, dissemination, forwarding, printing, or
copying of this email is strictly prohibited. If you received this email in
error, please immediately notify postmaster@xxxxxxxxxxxxx and destroy the
original message. 

As an Amazon Associate we earn from qualifying purchases.

This thread ...

Follow-Ups:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.