Reputation: 700
Missing Authorization Header
I have a website running an ISAPI filter providing SSO functionality, as well as anonymous & basic authentication.
The ISAPI filter populates the "Authorization" header of each request with basic credentials e.g. basic base64EncodedString (username:password), which I can see using Fiddler.
Next I have an HTTP Module picking up the basic credentials from the "Authorization" header, decoding them and placing the username in a new header value. The new header is then picked up by Tridion and used by the inbuilt SSO module.
This solution works in IIS6, but not in IIS7.5; in IIS7.5 the "Authorization" header is not present in the request. I checked for the header both in the HTTP Module, and in a dummy ASPX page.
Upvotes: 3
Views: 3155
Answers (1)
Reputation: 598603
It sounds like your ISAPI filter is not being triggered in IIS 7.5 then. Make sure that you have enabled them as described here: http://forums.iis.net/t/1178302.aspx
Upvotes: 3
Related Questions
- HTTP Error 401.2 - Unauthorized You are not authorized to view this page due to invalid authentication headers
- IIS - 401.3 - Unauthorized
- HTTP Error 401.3 - Unauthorized
- IIS File authorization failed for the request
- Authorization Rules Missing in IIS7
- Empty Authorization header leads to 400 error. IIS 7.5
- Why am I receiving a blank authentication header from IIS for this request?
- IIS 7.5 Invalid authentication headers 401.2 when viewing site in browser
- Windows Authentication header token not being sent?
- Problem with Authorization with IIS and MVC