[Koha-bugs] [Bug 29992] New: Default Apache config should contain CGIPassAuth directive
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Tue Feb 1 11:44:29 CET 2022
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=29992
Bug ID: 29992
Summary: Default Apache config should contain CGIPassAuth
directive
Change sponsored?: ---
Product: Koha
Version: unspecified
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: P5 - low
Component: Architecture, internals, and plumbing
Assignee: koha-bugs at lists.koha-community.org
Reporter: andrew.isherwood at ptfs-europe.com
QA Contact: testopia at bugs.koha-community.org
By default, authorization headers are stripped out by Apache and therefore do
not reach the underlying CGI script. This causes problems when Koha is
receiving API requests that contain them as the client just receives a 401
response, even if a valid token was provided.
I propose we add the CGIPassAuth directive to the API Directory blocks.
--
You are receiving this mail because:
You are the assignee for the bug.
You are watching all bug changes.
More information about the Koha-bugs
mailing list