Please help with my httpd.config (cookie & mod_auth_mysql)
Hi guys, I really would appreciate some help from the experts here. My httpd.conf isn't working like it should do any more and the worst thing is - I can't find out what I've done wrong! Please help if you're knowledgeable, I've had a few hack attempts using my Apache recently, so I want to get this up as soon as poss!
Currently, all /var/www/downloads and subdirectories for users (/var/www/downloads/<username>) require a username and password using mod_auth_mysql. This works.
What's not working:
The problem is: I have settings which SHOULD require either a login using mod_auth_mysql (works), or a cookie (doesn't work). If the cookie is present, then it should automatically display the contents of the directory when a user goes to /var/www/downloads/<their_username>. But it doesn't, it asks for a username/password still.
I'm using SetEnvIf, but it might be being used incorrectly with "satisfy all" - my files are below.
I might have conflicts between httpd.conf and /sites-enabled/000-default. I'm not experienced with most of the stuff here, so any help would be massively appreciated!
httpd.conf here: jsfiddle.net/6ACnW/
I'm not using .htaccess files. This all seemed to work a few days ago, now it's not and I can't for the life of me figure out why!
Any help would be amazing right now after the previous hack attempt that grabbed all my bloody code!