Bug 46809 - mod_rewrite+mod_ssl+SSLCientVerify = no POST variables
Summary: mod_rewrite+mod_ssl+SSLCientVerify = no POST variables
Status: RESOLVED DUPLICATE of bug 43738
Alias: None
Product: Apache httpd-2
Classification: Unclassified
Component: mod_rewrite (show other bugs)
Version: 2.2.3
Hardware: PC Linux
: P1 normal (vote)
Target Milestone: ---
Assignee: Apache HTTPD Bugs Mailing List
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2009-03-05 19:38 UTC by Karl Grindley
Modified: 2009-03-06 02:41 UTC (History)
0 users


Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Karl Grindley 2009-03-05 19:38:42 UTC 
If SSLClientVerify for a <directory> is configured, such as:
<Directory "/var/www/html/site">
  SSLVerifyClient require
  SSLVerifyDepth  10
</Directory>

And mod rewrite is configured for this site: (via .htaccess in before mentioned directory)

RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteCond %{REQUEST_URI} !=/favicon.ico
RewriteRule ^(.*)$ index.php?q=$1 [L,QSA]

Submitting a POST with variables defined do NOT show up on the script/php side.  Disabling mod_rewrite or SSLVerifyClient for the path will cause POST variables to be defined.
Comment 1 Joe Orton 2009-03-06 02:41:24 UTC 

*** This bug has been marked as a duplicate of bug 43738 ***