{"id":59,"date":"2007-08-13T20:24:31","date_gmt":"2007-08-13T12:24:31","guid":{"rendered":"http:\/\/broso.twbbs.org\/blojsom\/blog\/default\/ITTech\/Apache\/?permalink=Apache-Digest-Authentication-IE-Wordaround.html"},"modified":"2007-08-13T20:24:31","modified_gmt":"2007-08-13T12:24:31","slug":"apache-digest-authentication-ie-workaround","status":"publish","type":"post","link":"https:\/\/cychien.tw\/wordpress\/2007\/08\/13\/apache-digest-authentication-ie-workaround\/","title":{"rendered":"Apache Digest Authentication &#8211; IE Workaround."},"content":{"rendered":"<p>\u6628\u5929\u8a2d\u5b9a\u597d Digest Realm Authentication \u4e4b\u5f8c<more\/>\uff0c\u6e2c\u8a66\u904e IE7 \/ Firefox 2\uff0c\u770b\u8d77\u4f86\u90fd\u6c92\u4ec0\u9ebc\u554f\u984c\u3002\u7d50\u679c\u4eca\u5929\u5230\u516c\u53f8\u7528 IE6 \u770b\u7684\u6642\u5019\uff0c\u7adf\u7136\u767c\u73fe\u600e\u9ebc\u6703\u6709 400 Bad Request \u932f\u8aa4..<\/p>\n<p\/>\n<img decoding=\"async\" data-src=\"\/blojsom\/resources\/default\/20070813_digest_ie_workaround\/digest_auth_bad.jpg\" alt=\"Bad Request\" src=\"data:image\/svg+xml;base64,PHN2ZyB3aWR0aD0iMSIgaGVpZ2h0PSIxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciPjwvc3ZnPg==\" class=\"lazyload\" \/><\/p>\n<p\/>\n\u67e5\u4e86\u4e00\u4e0b\u5b50\uff0c\u624d\u767c\u73fe\u539f\u4f86\u9019\u662f IE \u7684 bug\uff0c\u539f\u5b9a\u8eab\u4efd\u6aa2\u6838\u5b8c\u7562\u5f8c\uff0c\u4efb\u4f55\u9023\u7dda IE \u90fd\u61c9\u8a72\u6703\u81ea\u52d5\u5e36\u4e0a Authorization \u7684 Header.<\/p>\n<p\/>\nAuthorization: Digest username=&#8221;cychien&#8221;, realm=&#8221;AWSTATS&#8221;, qop=&#8221;auth&#8221;, algorithm=&#8221;MD5&#8243;, uri=&#8221;\/awstats\/awstats.pl\/&#8221;, nonce=&#8221;UBoBaJM3BAA=192135920c05c0d0ce0b89e69fbef6144b46ccad&#8221;, nc=00000002, cnonce=&#8221;a592556fde6ae1e828f360be6081d636&#8243;, response=&#8221;53580f5e52dd07e62ffa594865aeb1e2&#8243;<\/p>\n<p\/>\n<p>\u4f46\u78b0\u5230\u6709 query string \u7684 URL \u6642\uff0cIE \u5c31\u7a81\u69cc\u4e86\uff0c\u6458\u9304 HTTP Header \u8cc7\u6599\u5982\u4e0b\u5c31\u4e00\u5207\u660e\u77ad\u4e86<\/p>\n<p\/>\nGET \/awstats\/awstats.pl\/awstats.pl?framename=mainleft HTTP\/1.1<br \/>\n&#8230;.<br \/>\n&#8230;.\u7701\u7565<br \/>\nCookie: __utma=200320509.1007104159.1151628725.1187006067.1187006101.242; __utmz=200320509.1182908533.228.4.utmccn=(organic)|utmcsr=google|utmctr=%e9%9a%a8%e6%83%b3%e6%84%8f%e8%aa%8c|utmcmd=organic; phpbb2mysql_data=a%3A2%3A%7Bs%3A11%3A%22autologinid%22%3Bs%3A0%3A%22%22%3Bs%3A6%3A%22userid%22%3Bi%3A-1%3B%7D; control-commentControl=false; control-pluginControl=false; control-miscControl=false; control-mediaCastControl=false; rfolder-root=true; rfolder-??????=true; rfolder-??L???=true; __utmb=200320509; __utmc=200320509; JSESSIONID=GQGGcQPrYCQhzvCpyVKxJBGwmfNpy1cs2wXfy1bv1sgST9vSYyL1!-857858892<br \/>\n<br \/>\nAuthorization: Digest username=&#8221;cychien&#8221;, realm=&#8221;AWSTATS&#8221;, qop=&#8221;auth&#8221;, algorithm=&#8221;MD5&#8243;, uri=&#8221;\/awstats\/awstats.pl\/awstats.pl<font color=\"#FFFF80\">?framename=mainleft<\/font>&#8220;, nonce=&#8221;UBoBaJM3BAA=192135920c05c0d0ce0b89e69fbef6144b46ccad&#8221;, nc=00000003, cnonce=&#8221;8b98b9b1072e4c812443386f8363c07c&#8221;, response=&#8221;6d5c775889d9e631aed40cfafd19ce9a&#8221;<\/p>\n<p\/>\n<p>\u554f\u984c\u5c31\u51fa\u5728 Authorization \u7684 uri \u53c3\u6578\u4e2d\uff0cIE \u7684 bug \u8a3b\u5b9a\u4e0d\u6703\u5c07 query string \u9644\u4e0a\uff0c\u6240\u4ee5Apache \u6703\u8a8d\u70ba\u8207\u5148\u524d\u7684 uri \u4e0d\u540c\uff0c\u6240\u4ee5\u56de\u8986 Bad Request.<\/p>\n<p\/>\n\u91dd\u5c0d\u5fae\u8edf\u7684\u8001\u5927\u5fc3\u614b\uff0c\u6b7b\u5c31\u662f\u4e0d\u6539\u4ed6\u7684 bug\uff0c\u6240\u5e78 Apache \u5f9e 2.0.51 \u4e4b\u5f8c\u4e5f\u63a8\u51fa\u4e00\u7d44\u89e3\u6c7a\u65b9\u6848\uff0c\u85c9\u4ee5\u89e3\u6c7a IE query string \u554f\u984c.<\/p>\n<p\/>\n\u53ea\u8981\u5728 httpd.conf \u4e2d\u52a0\u4e0a<\/p>\n<p\/>\nBrowserMatch &#8220;MSIE&#8221; AuthDigestEnableQueryStringHack=On<\/p>\n<p\/>\n\u53ea\u6709\u91dd\u5c0d IE \u700f\u89bd\u5668\uff0c\u624d\u6703\u5ffd\u7565 Authorization uri \u53c3\u6578\u7684\u932f\u8aa4\u3002\u7d93\u904e\u6e2c\u8a66\u679c\u7136\u6709\u6548\u3002\u7279\u5225\u8a18\u9304\u4e00\u4e0b..<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u6628\u5929\u8a2d\u5b9a\u597d Digest Realm Authentication \u4e4b\u5f8c\uff0c\u6e2c\u8a66\u904e IE7 \/ Firefox  [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[14],"tags":[],"class_list":["post-59","post","type-post","status-publish","format-standard","hentry","category-ittechapache"],"_links":{"self":[{"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/posts\/59","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/comments?post=59"}],"version-history":[{"count":0,"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/posts\/59\/revisions"}],"wp:attachment":[{"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/media?parent=59"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/categories?post=59"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cychien.tw\/wordpress\/wp-json\/wp\/v2\/tags?post=59"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}