Is this one of the areas you modified ?
 
42    <Directory /> 
  43         Order Allow,Deny 
  44         allow from all 
  45         UserID LIBRARIAN 
  46    </Directory> 

I do not see where you had the original server using the LIBRARIAN
userid for anything. Is this userid authorized to your CGI applications
?
 
p.s. does it work with the unmodified configuration the wizard created
?

>>> edolon@xxxxxxxxxx 11/30/2004 8:48:07 PM >>>

I am getting frustrated with migrating our original HTTP instances into

APACHE.  I am already using Server UserID with a very HIGH
authorisation 
but the Errorlog still say something like this.........

The browser says
HTTP403: You are not authorized to view this page.You might not have 
permission to view this directory or page using the credentials you 
supplied. 

And inspecting the log it says

[Tue Nov 30 15:41:43 2004] [error] [client 10.44.211.108] 
(3101) A non-recoverable I/O error occurred.: ZSRV_MSG0019: Permissions

on file /qsys.lib/testcgi.lib/ERCMMAIN.pgm deny server access 

Below are the original & migrated configurations.

Any HELP is appreciated



Configuration: ERPGSVR2 

===================================================
# * * * * * * * * * * * * * * * * * * * * * * * * * * *
#               IBM HTTP Server for AS/400
# * * * * * * * * * * * * * * * * * * * * * * * * * * *
#
HostName 10.44.3.43
UserID PGUSER
Port 1025
enable get
enable post
enable head
Map /claims/erpgdir/* /erpgdir/*
MAP /claims/cgibin/*    /qsys.lib/testcgi.lib/*.pgm
MAP /claims/cgibin6/*    /qsys.lib/junitg.lib/*.pgm
Map /claims/cgibin/* /QSYS.LIB/SUNCGI.LIB/*.PGM
exec /qsys.lib/testcgi.lib/*
Exec /QSYS.LIB/SUNCGI.LIB/*
Exec /QSYS.LIB/JUNITG.LIB/*
Exec /cgidevpgm/* /QSYS.LIB/SUNCGI.LIB/*
Pass /QSYS.LIB/SUNCGI.LIB/*
AccessLog /HTTPLOGS/httpqualogs 2000
LogFormat Common
CgiErrorLog /cgierrlogs/cgiquaerrlogs 2000
ErrorLog /errorlogs/quaerrorlogs 2000 *DFT *DFT
pass /erpgdir/*
CacheExpiryCheck ON
CacheNoConnect Off
CacheTimeMargin 0
CacheLastModifiedFactor 0.14
CacheLocalMaxBytes 2 M
CacheLocalMaxFiles 200
LiveLocalCache On
BindSpecific Off
DNS-Lookup Off
RuleCaseSense Off
Imbeds Off SSIOnly
LogTime localtime
AccessLogArchive None
AccessLogExpire 0
AccessLogSizeLimit 0
ErrorLogArchive None
ErrorLogExpire 0
ErrorLogSizeLimit 0
MaxActiveThreads 100
===================================================



Migrated and modified apache config
  1    ServerUserID LIBRARIAN 
  2    <Location /> 
  3        <LimitExcept GET HEAD OPTIONS POST TRACE> 
  4             Order Allow,Deny 
  5             Deny From all 
  6        </LimitExcept> 
  7    </Location> 
  8    LogFormat "%h %l %u %t \"%r\" %>s %b" common 
  9    CustomLog /HTTPLOGS/httpqualogs common env=!LogExclusion 
  10    Options +ExecCGI -SymLinksIfOwnerMatch -Includes
-IncludesNoExec 
-MultiViews 
  11    DefaultType www/unknown 
  12    ServerName 10.44.3.43 
  13    Listen *:1025 
  14    LogLength 2048000 
  15    ErrorLog /qsys.lib/qusrsys.lib/HTTPERRJUN.file 
  16    MaxKeepAliveRequests 5 
  17    TimeOut 120 
  18    KeepAliveTimeout 4 
  19    ThreadsPerChild 100 
  20    DocumentRoot / 
  21    DirectoryIndex welcome.html index.html 
  22    CGIConvMode %%MIXED/MIXED%% 
  23    ScriptLog /cgierrlogs/cgiquaerrlogs 
  24    ScriptLogLength 2048000 
  25    IndexOptions -DescriptionWidth -FancyIndexing -FoldersFirst 
-IconHeight -IconsAreLinks -IconWidth -IgnoreCase -IgnoreClient
-NameWidth 
-NameMinWidth -ScanHTMLTitles -SelectiveDirAccess -ShowSmallFileBytes 
-ShowOwner -SuppressColumnSorting -SuppressDescription 
-SuppressHTMLPreamble -SuppressIcon -SuppressLastModified
-SuppressRules 
-SuppressSize -TrackModified -VersionSort 
  26    HeaderName README 
  27    <Directory /erpgdir/*> 
  28         Allow From all 
  29    </Directory> 
  30    <Directory /QSYS.LIB/JUNITG.LIB/> 
  31         Options +ExecCGI 
  32         Allow From all 
  33    </Directory> 
  34    <Directory /QSYS.LIB/SUNCGI.LIB/> 
  35         Options +ExecCGI 
  36         Allow From all 
  37    </Directory> 
  38    <Directory /qsys.lib/testcgi.lib/> 
  39         Options +ExecCGI 
  40         Allow From all 
  41    </Directory> 
  42    <Directory /> 
  43         Order Allow,Deny 
  44         allow from all 
  45         UserID LIBRARIAN 
  46    </Directory> 
  47    AliasMatch /claims/erpgdir/(.*) /erpgdir/$1 
  48    AliasMatch /claims/cgibin/(.*) /qsys.lib/testcgi.lib/$1.pgm 
  49    AliasMatch /claims/cgibin6/(.*) /qsys.lib/junitg.lib/$1.pgm 
  50    AliasMatch /claims/cgibin/(.*) /QSYS.LIB/SUNCGI.LIB/$1.PGM 
  51    AliasMatch /qsys\.lib/testcgi\.lib/(.*)
/qsys.lib/testcgi.lib/$1 
  52    AliasMatch /QSYS\.LIB/SUNCGI\.LIB/(.*) /QSYS.LIB/SUNCGI.LIB/$1

  53    AliasMatch /QSYS\.LIB/JUNITG\.LIB/(.*) /QSYS.LIB/JUNITG.LIB/$1

  54    AliasMatch /cgidevpgm/(.*) /QSYS.LIB/SUNCGI.LIB/$1 
  55    ScriptAlias /QSYS\.LIB/SUNCGI\.LIB/(.*) /QSYS.LIB/SUNCGI.LIB/$1

  56    AliasMatch /erpgdir/(.*) /erpgdir/$1 






**********************************************************************
CAUTION - This message is intended for the addressee named above. It
may contain privileged or confidential information. If you are not the

intended recipient of this message you must not use, copy, distribute 
or disclose it to anyone.
**********************************************************************

_______________________________________________
This is the Web Enabling the AS400 / iSeries (WEB400) mailing list
To post a message email: WEB400@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/web400
or email: WEB400-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/web400.



As an Amazon Associate we earn from qualifying purchases.

This thread ...


Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.