× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. WEB400
  3. January 2009

Re: Using UserID and Pawword with HTTP server(V5R1original)

Todd

I have been looking at the trace logs and found the following

My configuration includes

Protection TestProt {
PasswdFile %%SYSTEM%%
Authtype Basic
Userid %%CLIENT%%
}

Protect /QSYS.LIB/E290PRDOBJ.LIB/e290G00000.PGM TestProt

Exec /cgi-bin/stipple /QSYS.LIB/E290PRDOBJ.LIB/e290G00000.PGM
Exec /cgi-bin/e29rpp/* /QSYS.LIB/E290PRDOBJ.LIB/E29RPP.PGM
Exec /cgi-bin/*
/QSYS.LIB/E290PRDOBJ.LIB/*



As you are obviously aware, the trace logs are somewhat verbose but I found
the following which may be relevant.

1232976988 00000128 HTConfig Configuration File is.....
/QSYS.LIB/QUSRSYS.LIB/QATMHTTPC.FILE/CONFIG.MBR
1232976988 00000128 HTConfig Protection.. definition for name
"TestProt"
1232976988 00000128 HTAAProt Reading..... protection setup directly from
config file
1232976988 00000128 HTLex.c Lexer.......
reset.
1232976988 00000128 HTAAProt HTAA_parseProtFile... ending on
brace
1232976988 00000128 HTLex.c Lexer....... trying to get a new
line.
1232976988 00000128 HTLex.c Lexer....... read " PasswdFile %%SYSTEM%% "
(extent=24).
1232976988 00000128 HTLex.c Lexer....... returning 8 ^alphanumeric string
'PasswdFile'].
1232976988 00000128 HTAAProt HTAA_parseProtFile...lex_item=alphanumeric
string 'PasswdFile'
1232976988 00000128 HTLex.c Lexer....... returning 8 ^alphanumeric string
'%%SYSTEM%%'].
1232976988 00000128 HTLex.c Lexer....... pushed back token
8.
1232976988 00000128 HTLex.c Lexer....... returning 8 ^alphanumeric string
'%%SYSTEM%%'].
1232976988 00000128 HTLex.c Lexer....... returning 2 ^record separator
(newline)].
1232976988 00000128 HTAAProt Binding..... "PasswdFile" bound to
"%%SYSTEM%%"
1232976988 00000128 HTLex.c Lexer....... trying to get a new
line.
1232976988 00000128 HTLex.c Lexer....... read " Authtype Basic "
(extent=22).
1232976988 00000128 HTLex.c Lexer....... returning 8 ^alphanumeric string
'Authtype'].
1232976988 00000128 HTAAProt HTAA_parseProtFile...lex_item=alphanumeric
string 'Authtype'
1232976988 00000128 HTLex.c Lexer....... returning 8 ^alphanumeric string
'Basic'].
1232976988 00000128 HTLex.c Lexer....... pushed back token
8.
1232976988 00000128 HTLex.c Lexer....... returning 8 ^alphanumeric string
'Basic'].
1232976988 00000128 HTAAProt OkScheme....
Basic
1232976988 00000128 HTLex.c Lexer....... returning 2 ^record separator
(newline)].
1232976988 00000128 HTLex.c Lexer....... trying to get a new
line.
1232976988 00000128 HTLex.c Lexer....... read " Userid %%CLIENT%% "
(extent=23).
1232976988 00000128 HTLex.c Lexer....... returning 8 ^alphanumeric string
'Userid'].
1232976988 00000128 HTAAProt HTAA_parseProtFile...lex_item=alphanumeric
string 'Userid'
1232976988 00000128 HTLex.c Lexer....... returning 8 ^alphanumeric string
'%%CLIENT%%'].
1232976988 00000128 HTLex.c Lexer....... pushed back token
8.
1232976988 00000128 HTLex.c Lexer....... returning 8 ^alphanumeric string
'%%CLIENT%%'].
1232976988 00000128 HTLex.c Lexer....... returning 2 ^record separator
(newline)].
1232976988 00000128 HTAAProt Binding..... "Userid" bound to
""
1232976988 00000128 HTLex.c Lexer....... trying to get a new
line.
............................ ^26/Jan/2009:13:36:28 +0000, 1232976988]
00000101
1232976988 00000128 HTLex.c Lexer....... read "} "
(extent=2).
1232976988 00000128 HTLex.c Lexer....... returning 10
^'}'].
1232976988 00000128 HTAAProt
HTAA_parseProtFile...lex_item='}'
1232976988 00000128 HTUid.c Parsed...... string "%%CLIENT%%" as UserID:
%%CLIENT%% uid:-1
UserId...... %%CLIENT%% in this protection
setup
1232976988 00000128 HTConfig Looking up.. named protection
"TestProt"
1232976988 00000128 HTConfig Checking....
"TestProt"
1232976988 00000128 HTConfig
Found.......

1232976988 00000128 HTRuleDB Exec........
"/QSYS.LIB/E290PRDOBJ.LIB/e290G00000.PGM"
1232976988 00000128 HTConfig TimeOut..... for persistentcgi set to 3600
secs
1232976988 00000128 HTConfig TimeOut..... for maxpersistentcgi set to 3600
secs
1232976988 00000128 HTRuleDB Service..... "/cgi-bin/hello" -->
"/QSYS.LIB/E280CGIOBJ.LIB/hello.pgm"
1232976988 00000128 HTRuleDB Service..... "/cgi-bin/stipple" -->
"/QSYS.LIB/E290PRDOBJ.LIB/e290G00000.PGM"
1232976988 00000128 HTRuleDB Service..... "/cgi-bin/e29rpp/*" -->
"/QSYS.LIB/E290PRDOBJ.LIB/E29RPP.PGM"
1232976988 00000128 HTRuleDB Service..... "/cgi-bin/*" -->
"/QSYS.LIB/E290PRDOBJ.LIB/*"
1232976988 00000128 HTIcons. AddIcon..... text/* =>
SRC="/QIBM/HTTPSVR/Icons/text.gif" ALT="text"
1232976988 00000128 HTIcons. AddIcon..... text/html =>
SRC="/QIBM/HTTPSVR/Icons/html.gif" ALT="html"
1232976988 00000128 HTIcons. AddIcon..... application/* =>
SRC="/QIBM/HTTPSVR/Icons/binary.gif" ALT="bin"
1232976988 00000128 HTIcons. AddIcon..... application/x-compress =>
SRC="/QIBM/HTTPSVR/Icons/compress.gif" ALT="Z"
1232976988 00000128 HTIcons. AddIcon..... application/x-gzip =>
SRC="/QIBM/HTTPSVR/Icons/compress.gif" ALT="gzip"
1232976988 00000128 HTIcons. AddIcon..... image/* =>
SRC="/QIBM/HTTPSVR/Icons/image.gif" ALT="img"
1232976988 00000128 HTIcons. AddIcon..... video/* =>
SRC="/QIBM/HTTPSVR/Icons/movie.gif" ALT="vid"
1232976988 00000128 HTIcons. AddIcon..... audio/* =>
SRC="/QIBM/HTTPSVR/Icons/sound.gif" ALT="au"
1232977014 00000132 HTRequst Client sez.. GET /cgi-bin/stipple
HTTP/1.1
1232977014 00000132 HTRequst Protocol version....
1.1

1232977014 00000132 HTRequst Persistent Conection has been
established
1232977014 00000132 HTRequst Client sez.. Host: www.erros.co.uk

1232977014 00000132 HTRequst Host........ www.erros.co.uk

1232977014 00000132 HTRequst Client sez.. User-Agent: Mozilla/5.0 (Windows;
U; Windows NT 6.0; en-GB; rv:1.9.0.5) Gecko/2008120122
1232977014 00000132 HTRequst User-Agent.. Mozilla/5.0 (Windows; U; Windows
NT 6.0; en-GB; rv:1.9.0.5) Gecko/2008120122 Firefox/3.0
1232977014 00000132 HTString Debug....... strcasestr(s1 = "Mozilla/5.0
(Windows; U; Windows NT 6.0; en-GB; rv:1.9.0.5) Gecko/20081
1232977014 00000132 HTRequst Client sez.. Accept:
text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8

1232977014 00000132 HTRequst Accept...... text/html
(q=1.00,mxb=0.0,mxs=0.0)

1232977014 00000132 HTRequst Accept...... application/xhtml+xml
(q=1.00,mxb=0.0,mxs=0.0)
1232977014 00000132 HTRequst Accept...... application/xml
(q=0.90,mxb=0.0,mxs=0.0)
1232977014 00000132 HTRequst Accept...... */*
(q=0.80,mxb=0.0,mxs=0.0)

1232977014 00000132 HTRequst Client sez.. Accept-Language:
en-gb,en;q=0.5
1232977014 00000132 HTRequst Language.... en-gb
(q=1.00)

1232977014 00000132 HTRequst Language.... en
(q=0.50)

1232977014 00000132 HTRequst Client sez.. Accept-Encoding:
gzip,deflate
1232977014 00000132 HTRequst Encoding.... gzip
(q=1.00)

1232977014 00000132 HTRequst Encoding.... deflate
(q=1.00)
1232977014 00000132 HTRequst Client sez.. Accept-Charset:
ISO-8859-1,utf-8;q=0.7,*;q=0.7
1232977014 00000132 HTRequst Charset..... ISO-8859-1
(q=1.00)
1232977014 00000132 HTRequst Charset..... utf-8
(q=0.70)
1232977014 00000132 HTRequst Charset..... *
(q=0.70)
1232977014 00000132 HTRequst Client sez.. Keep-Alive:
300
1232977014 00000132 HTRequst Client sez.. Connection:
keep-alive
1232977014 00000132 HTRequst Connection..
keep-alive
1232977014 00000132 HTParse. HTSimplify.. simplifying
`/cgi-bin/stipple'
1232977014 00000132 HTParse. HTSimplify.. nothing to
do!
1232977014 00000132 HTMPool. MemPool..... creating a new 4240-byte
pool.
1232977014 00000132 HTServer About....... to call preexit for
"/cgi-bin/stipple".
............................ ^26/Jan/2009:13:36:54 +0000, 1232977014]
00000751
1232977014 00000132 HTRuleDB Using local address
217.204.115.107.
1232977014 00000132 HTRuleDB Exec........
/QSYS.LIB/E290PRDOBJ.LIB/e290G00000.PGM did NOT match /cgi-bin/stipple.
1232977014 00000132 HTRuleDB Service..... /cgi-bin/hello did NOT match
/cgi-bin/stipple.
1232977014 00000132 HTRuleDB Service..... matched "/cgi-bin/stipple" ->
"/QSYS.LIB/E290PRDOBJ.LIB/e290G00000.PGM"
1232977014 00000132 HTRuleDB No wilds.... so no
PATH_INFO
1232977014 00000132 HTAAServ AuthCheck... Translated script name:
"/QSYS.LIB/E290PRDOBJ.LIB/e290G00000.PGM"
1232977014 00000132 HTAAServ AccessOk.... by fast path. No protect rule nor
ACL.
1232977014 00000132 HTServer AA.......... check returned
200
1232977014 00000132 HTServer Translated..
"-null-"
1232977014 00000132 HTServer HTHandle..... Access as "%%SERVER%%" for
Client "-unknown-"
1232977014 00000132 HTPICS.c PICS........ no protocol bags
received.
1232977014 00000132 HTServer HTHandle.... method
GET
1232977014 00000132 HTScript HTStartScript... content length parm is
0
1232977014 00000132 HTScript Scheme......
CGI/1.1
1232977014 00000132 HTSEnv.c Environ.....
CGI_MODE=%%EBCDIC%%
1232977014 00000132 HTSEnv.c Environ..... CGI_OUTPUT_MODE=%%MIXED%%

It seems to say that it has found the protection "TestProt" but, just above,
"no protect ruke or ACL"

I confess that I don't understand why the server seems to think that no
protection is required.


In another log

1232976991 0000000B zhbhloop C helper job for instance
DEFAULT
............................ ^26/Jan/2009:13:36:30 +0000, 1232976990]
00000001
1232977014 0000000B zhbhloop received 1169 bytes and 12
descriptors
1232977014 0000000B zhbhloop returned 40 bytes of
data
1232977014 0000000B zhbhloop returned 1129 bytes of
data
1232977014 0000000B zhbhloop returning 3
descriptors
1232977014 0000000B HTCgibin Using CCSID 285 for the environment
variables
1232977014 0000000B HTCgibin Environment variable:
CGI_MODE=%%EBCDIC%%
1232977014 0000000B HTCgibin Environment variable:
_WX_GEN_NAMES=
1232977014 0000000B HTCgibin Environment variable:
ICU_DATA=/QIBM/ProdData/OS400/ICU/data
1232977014 0000000B HTCgibin Environment variable:
CGI_OUTPUT_MODE=%%MIXED%%
1232977014 0000000B HTCgibin Environment variable:
IBM_CCSID_VALUE=285
1232977014 0000000B HTCgibin Environment variable:
CGI_EBCDIC_CCSID=285
1232977014 0000000B HTCgibin Environment variable:
CGI_ASCII_CCSID=819
1232977014 0000000B HTCgibin Environment variable:
SERVER_SOFTWARE=IBM-HTTP-Server/1.0
1232977014 0000000B HTCgibin Environment variable: SERVER_NAME=
www.erros.co.uk
1232977014 0000000B HTCgibin Environment variable:
SERVER_PORT=80
1232977014 0000000B HTCgibin Environment variable:
RULE_FILE=/QSYS.LIB/QUSRSYS.LIB/QATMHTTPC.FILE/CONFIG.MBR
1232977014 0000000B HTCgibin Environment variable:
SERVER_PROTOCOL=HTTP/1.1
1232977014 0000000B HTCgibin Environment variable:
REQUEST_METHOD=GET
1232977014 0000000B HTCgibin Environment variable:
GATEWAY_INTERFACE=CGI/1.1
1232977014 0000000B HTCgibin Environment variable:
PATH_INFO=
1232977014 0000000B HTCgibin Environment variable:
PATH_TRANSLATED=
1232977014 0000000B HTCgibin Environment variable:
QUERY_STRING=
1232977014 0000000B HTCgibin Environment variable:
SERVER_ADDR=217.204.115.107
1232977014 0000000B HTCgibin Environment variable:
SCRIPT_NAME=/cgi-bin/stipple
1232977014 0000000B HTCgibin Environment variable:
REMOTE_ADDR=192.168.0.221
1232977014 0000000B HTCgibin Environment variable:
AUTH_TYPE=
1232977014 0000000B HTCgibin Environment variable:
REMOTE_USER=
1232977014 0000000B HTCgibin Environment variable:
CONTENT_TYPE=
1232977014 0000000B HTCgibin Environment variable:
REFERER_URL=
1232977014 0000000B HTCgibin Environment variable:
DOCUMENT_ROOT=/QSYS.LIB/E290PRDOBJ.LIB
1232977014 0000000B HTCgibin Environment variable:
DOCUMENT_URI=/cgi-bin/stipple
1232977014 0000000B HTCgibin Environment variable:
DOCUMENT_NAME=/QSYS.LIB/E290PRDOBJ.LIB/e290G00000.PGM
1232977014 0000000B HTCgibin Environment variable:
FSCP=285



There was nothing in either the error or accesslogs

Does it mean anything to you or anyone else?

Many thanks

Rob Dixon



2009/1/23 <TAllen@xxxxxxxxxxxx>

Yes, it is 2 lower case v's. That log will often point out config. errors.

Thanks,
Todd





Rob Dixon
<robertsdixon@gma
il.com> To
Sent by: "Web Enabling the AS400 / iSeries"
web400-bounces@mi <web400@xxxxxxxxxxxx>
drange.com cc

Subject
2009-01-23 15:32 Re: [WEB400] Using UserID and
Pawword with HTTP server
(V5R1original)
Please respond to
Web Enabling the
AS400 / iSeries
<web400@midrange.
com>






Todd

I have now tried that and found the spool file but nothing seems untoward
and still nothing in the errorlog. I assume that the letters were - V V
not
-W.



What

2009/1/23 <TAllen@xxxxxxxxxxxx>

Will starting the HTTP server with the -vv option give you what you need?

ex. STRTCPSVR SERVER (*HTTP) HTTPSVR(<INSTANCE_NAME> '-vv')

I think the spool file is available under the QTMHHTTP user profile.

Thanks,
Todd





Rob Dixon
<robertsdixon@gma
il.com>
To
Sent by: "Web Enabling the AS400 / iSeries"
web400-bounces@mi <web400@xxxxxxxxxxxx>
drange.com
cc

Subject
2009-01-23 15:04 Re: [WEB400] Using UserID and
Pawword with HTTP server (V5R1
original)
Please respond to
Web Enabling the
AS400 / iSeries
<web400@midrange.
com>






Matt

Many thanks - I am researching to see if I can find such a log. NOthing
appears in the normal errorlog.

Rob

2009/1/22 Haas, Matt (CL Tech Sv) <matt.haas@xxxxxxxxxxx>

It looks okay but like I said, I don't have any way to test anything.
You
may want to look in the InfoCenter and see if there is a way to get the
server to give you a trace log. I think the classic server can do that
but I
don't remember. You may also find some information in the HTTP error
log
but
I think what it shows isn't quite as useful at the Apache based server
log.

Matt

-----Original Message-----
From: web400-bounces@xxxxxxxxxxxx [mailto:web400-bounces@xxxxxxxxxxxx]
On
Behalf Of Rob Dixon
Sent: Thursday, January 22, 2009 2:07 PM
To: Web Enabling the AS400 / iSeries
Subject: Re: [WEB400] Using UserID and Pawword with HTTP server (V5R1
original)

Matt

You must think me very rude not to have replied to you before but
somehow
I
missed your kind post. As I still have not solved the problem, I was
researching today and so came across your reply.

Of course I tried your suggestion at once,

my code is

Protection TestProt {
PasswdFile %%SYSTEM%%
Authtype Basic
ACLOverride Off
PostMask All
GetMask All
ServerID www.erros.co.uk
Userid %%CLIENT%%
}
Protect /cgi-bin/stipple/* TestProt
CGIMode %%EBCDIC%%
PersistentCGITimeout 60 minutes
MaxPersistentCGITimeout 60 minutes
Exec /cgi-bin/hello /QSYS.LIB/E280CGIOBJ.LIB/hello
Exec /cgi-bin/stipple /QSYS.LIB/E290PRDOBJ.LIB/e29
Exec /cgi-bin/e29rpp/* /QSYS.LIB/E290PRDOBJ.LIB/E29RPP.PGM

I have restarted the server but still no luck

Does your memory go back far enough to suggest what I am doing wrong?

Many thanks

Rob

2009/1/13 Haas, Matt (CL Tech Sv) <matt.haas@xxxxxxxxxxx>

I had a minute to look at an old config and here is an example that
should
work:

Protection TESTPROT {
PasswdFile %%SYSTEM%%
ACLOverride Off
PostMask All
GetMask All
AuthType BASIC
ServerID some_name
UserID %%CLIENT%%
}

Protect /cgi-bin/stipple/* TESTPROT

Note that I have no way to test this.

Matt

-----Original Message-----
From: web400-bounces@xxxxxxxxxxxx
[mailto:web400-bounces@xxxxxxxxxxxx]
On
Behalf Of Rob Dixon
Sent: Tuesday, January 13, 2009 1:38 PM
To: Web Enabling the AS400 / iSeries
Subject: Re: [WEB400] Using UserID and Pawword with HTTP server (V5R1
original)

I saw it only again recently but I am not sure where. I thought that
it
was
on one of the sites I have been using to learn CGIDEV2 but I have
looked
at
the pages I have book marked recently, from Search400 and Easy400,
and
I
cannot find it. I didn't dream it up. If I come across it again, I
will
let you know.

I had already tried the InfoCenter but can't find the answer. I need
to
find a site with lots of configuration examples rather than simply
the
syntax.

Many thanks

Rob

2009/1/13 Haas, Matt (CL Tech Sv) <matt.haas@xxxxxxxxxxx>

Rob,

Where did you find it published that the Apache version isn't the
best
for
V5R1 (it does stink on V4R5)? I ran it there for several years
without
problems. In fact, it made my life much, much easier since virtual
hosts
were easier to maintain.

As far as configuring the Original server goes, I don't think I
have
any
of
those configurations around any more. I know that I learned how to
set
all
of that up using the documentation from the InfoCenter. It may be
worth
a
look there.

Matt

-----Original Message-----
From: web400-bounces@xxxxxxxxxxxx
[mailto:web400-bounces@xxxxxxxxxxxx]
On
Behalf Of Rob Dixon
Sent: Tuesday, January 13, 2009 11:38 AM
To: Web Enabling the AS400 / iSeries
Subject: Re: [WEB400] Using UserID and Pawword with HTTP server
(V5R1
original)

Thanks Matt

I am using the original HTTP server on this V5R1 box because I have
read
several well known published experts say that this is best on V5R1
and
Apache should be left for V5R2 or for V5R3 when there is no choice.
I
do
use it on a V5R3 box but, since I rarely need to change the
configuration,
I
am even less skilled on that than on the Original server.

I tried putting in a Protect statement but without success. I did
restart
the server.

I already had a protection directive - please could you tell me
what
the
protec tstatement should say and where it should go?

Many thanks

Rob Dixon

2009/1/13 Haas, Matt (CL Tech Sv) <matt.haas@xxxxxxxxxxx>

Rob,

First off, why are you still using the Original server? The
Apache
based
one is much, much better.

To answer your question, you are missing the Protect statement.

Matt

-----Original Message-----
From: web400-bounces@xxxxxxxxxxxx [mailto:
web400-bounces@xxxxxxxxxxxx]
On
Behalf Of Rob Dixon
Sent: Tuesday, January 13, 2009 10:26 AM
To: Web Enabling the AS400 / iSeries
Subject: [WEB400] Using UserID and Pawword with HTTP server (V5R1
original)

I have got to the stage with my CGIDEV2 development where I now
want
to
work
using User IDs. According to the manual, including

Protection /cgi-bin/stipple/* {
Authtype Basic
Userid %%CLIENT%%
PasswdFile %%SYSTEM%%
}

in my HTTPCFG file should do the trick but nothing happens. I
have
put
this ahead of my Exec statement which reads

Map /cgi-bin/stipple/*
/QSYSLIB.LIB/E290PRDOBJ.LIB/E290G00000.PGM

This exec statement works fine.

I wish to use standard User profiles rather than a password file.

Can anyone please tell me what I am doing wrong?

Many thanks

Rob Dixon

www.erros.co.uk
www.boarstall.com
--





This communication and any transmitted documents are intended to be
confidential. If there is a problem with this transmission, please contact
the sender. If the reader of this message is not the intended recipient, or
the employee or agent responsible to deliver it to the intended recipient,
you are hereby notified that any dissemination, distribution or copying of
this communication is strictly prohibited.

--
This is the Web Enabling the AS400 / iSeries (WEB400) mailing list
To post a message email: WEB400@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/web400
or email: WEB400-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/web400.





As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.