/ Zope / Apsis / Pound Mailing List / Archive / 2004 / 2004-12 / Any progress on Pound + Apache2 + WebDAV

[ << ] [ >> ]

[ Need help to get pound 1.8 into Debian / FX ... ] [ Pound stripping cookie headers / Eric Pierce ... ]

Any progress on Pound + Apache2 + WebDAV
Greg Colla <pound(at)tek-studio.com>		 2004-12-14 11:13:45 [ FULL ] 
I'm new to Pound, looking for a reverse SSL proxy to connect into a subversion
service.

Clients will use SSL client side authentication. Proxy will strip SSL and
forward HTTP to Apache2/Subversion.

Seem to be two issues:
1. WebDAV issues - mapping https to http
2. Mapping SSL client authentication to Apache authentication

The first issue seems to answered in the Pound 1.8 readme: compiling with
"WebDAV 1" on, etc.

Is there an answer for the second issue? eg sending the Subject DN + fixed
password as the HTTP basic authentication to Apache? Anything else?

--
Greg
Re: Any progress on Pound + Apache2 + WebDAV
Robert Segall <roseg(at)apsis.ch>		 2004-12-14 19:30:53 [ FULL ] 
On Tuesday 14 December 2004 11.13, Greg Colla wrote:[...]

As you remark, WebDAV is not a problem.

Mapping HTTPS to Basic Authentication is a function of Apache/mod_ssl. I 
suggest you stick to normal Basic Authentication over HTTPS - or modify your 
Apache front-end to interpret correctly the certificate contents (which are 
made available by Pound). This is really an application issue.

We have had several reports of subversion working fine through Pound, so I 
expect it can be done.[...]
MailBoxer