Return-Path: Delivered-To: apmail-httpd-bugs-archive@www.apache.org Received: (qmail 17585 invoked from network); 27 Nov 2005 00:02:57 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 27 Nov 2005 00:02:57 -0000 Received: (qmail 82571 invoked by uid 500); 27 Nov 2005 00:02:57 -0000 Delivered-To: apmail-httpd-bugs-archive@httpd.apache.org Received: (qmail 82521 invoked by uid 500); 27 Nov 2005 00:02:56 -0000 Mailing-List: contact bugs-help@httpd.apache.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: Reply-To: "Apache HTTPD Bugs Notification List" List-Id: Delivered-To: mailing list bugs@httpd.apache.org Received: (qmail 82506 invoked by uid 99); 27 Nov 2005 00:02:56 -0000 X-ASF-Spam-Status: No, hits=0.6 required=10.0 tests=NO_REAL_NAME X-Spam-Check-By: apache.org Received: from [192.87.106.226] (HELO ajax.apache.org) (192.87.106.226) by apache.org (qpsmtpd/0.29) with ESMTP; Sat, 26 Nov 2005 16:02:55 -0800 Received: by ajax.apache.org (Postfix, from userid 99) id CEBB3C9; Sun, 27 Nov 2005 01:02:34 +0100 (CET) From: bugzilla@apache.org To: bugs@httpd.apache.org Subject: DO NOT REPLY [Bug 31418] - SSLUserName is not usable by other modules X-Bugzilla-Reason: AssignedTo Message-Id: <20051127000234.CEBB3C9@ajax.apache.org> Date: Sun, 27 Nov 2005 01:02:34 +0100 (CET) X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG� RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT . ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND� INSERTED IN THE BUG DATABASE. http://issues.apache.org/bugzilla/show_bug.cgi?id=31418 ------- Additional Comments From kpfleming@digium.com 2005-11-27 01:02 ------- Let me add my voice to this one... since I just fought with this very problem myself, and came to a similar solution before being directed to this issue. The problem is that FakeBasicAuth gives the user _no_ ability to set what r->user will become; it forces it to the DN from the certificate and that is it. I think it's reasonable to let SSLUserName have the desired effect even in FakeBasicAuth mode; I've patched my mod_ssl (from 2.0.54) to set the Authorization header based on dc->szUserName instead of clientdn if SSLUserName was specified. This appears to work fine, and allowed me to work with an unpatched mod_authz_svn (and the remote user name shows properly in access_log as well). This also means that the usernames are 'proper' in the htpasswd file and everywhere else that httpd would normally see/use them. I've attached my patch for this behavior; please let me know if there is some reason why mod_ssl should _not_ behave this way. -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org For additional commands, e-mail: bugs-help@httpd.apache.org