Hi All,
Just a question regarding the http_authentication plugin for rails (for those that have experience with it).
I've written a very simple rails app that allows a user to download a csv file from a server. The user authenticates using http_authentication. This works fine on our dev server (which uses webrick) but won't work on our live server (which uses mongrel).
Below are the http headers received from the servers:
I'm not sure if there is a bug or not BUT looking at your header information you have Mongrel 0.3.13.4 !? Is that the actual mongrel you are using? This version is 2+ years old.. If that is the Mongrel you should upgrade to the latest and test with that first. (1.1.5)
I would also recommend to run mongrel in you development environment just to see these issues before you push to your production env.
ho hum...
the latest (1.1.5) mongrel displays the 401 on my (local) dev server. But the same version of mongrel does not display it on the live server. Must be something to do with the set up on the live server. I'll have to do some more digging...
Thanks for the help though... it probably is about time we did some updating of rails / mongrel / ruby / etc
the solutions in the end for me was to edit the http_authentication plugin as below:
in /vendor/plugins/http_authentication/lib/http_authentication/ basic.rb line 49
controller.render :text => "HTTP Basic: Access denied.\n", :status => :unauthorized becomes controller.render :text => "HTTP Basic: Access denied.\n", :status => 401#:unauthorized
I'm still not completely satisfied with my solution and I'll try and get some feedback from the author but incase you're googling and stuck for answers maybe that will help...