httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 8500] - authorization user does not logged
Date Mon, 03 Mar 2003 13:58:17 GMT
DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://nagoya.apache.org/bugzilla/show_bug.cgi?id=8500>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://nagoya.apache.org/bugzilla/show_bug.cgi?id=8500

authorization user does not logged

nd@perlig.de changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |bugzilla@ab.thatcow.com
             Status|REOPENED                    |ASSIGNED



------- Additional Comments From nd@perlig.de  2003-03-03 13:58 -------
ooooh, let's puzzle out. These are two problems.

Roman: The difference between 1.3 and 2.0 is, that in 1.3 the remote user was
wrongly stored in the connection structure. This was corrected in 2.0 by storing
it in the request structure, but seems to have the drawback, that it won't be
inherited during internal redirects. You have to protect the cgi-script itself.
Changing the logformat to %<u may work around that problem as well. See also Bug
11602.

Andrew: I'd guess you have no AuthType and AuthName configured? If PHP doesn't
fill in the appropriate field within the request structure (r->user), there's no
chance that the user get logged. I'm wondering whether this worked in 1.3?

However, accepting this as a bug. But I don't know, when it will be fixed. We
need a resonable solution for this, perhaps in conclusion with some concept
puzzling.

Thanks.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message