Can I have Authentication without authorization checks with apache 2.4?

Question

When I do not provide a require directive, apache 2.4 seems to ignore authentication and just lets the user access the url.

Is there way to turn off Authorization checks and only worry about Authentication? I want to know who is logging into my web page, while still allowing everyone access.

You want the username to appear in the logs or what are you exactly trying to accomplish? — Frands Hansen, Feb 03 '14 at 22:48

score 0 · Answer 1 · answered Sep 27 '12 at 03:17

0

I don't think that is possible and I don't think that is how this feature was intended. You might want to implement something like that in your webapp.

answered Sep 27 '12 at 03:17

Christopher Perrin

4,741
17
32

score 0 · Answer 2 · answered Jan 16 '17 at 13:52

You could try https://httpd.apache.org/docs/current/mod/mod_authn_anon.html

To quote from that page:

Combined with other (database) access control methods, this allows for effective user tracking and customization according to a user profile while still keeping the site open for 'unregistered' users.

Can I have Authentication without authorization checks with apache 2.4?

2 Answers2