httpd-bugs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bugzi...@apache.org
Subject DO NOT REPLY [Bug 48780] Enable mod_authnz_ldap to accept valid client certificates as sufficient authentication
Date Thu, 25 Feb 2010 01:10:58 GMT
https://issues.apache.org/bugzilla/show_bug.cgi?id=48780

--- Comment #4 from Peter Thomas <pthomas@hpti.com> 2010-02-25 01:10:56 UTC ---
(In reply to comment #2)
> IMO cert-based authn or authz belongs outside of LDAP.  LDAP could have a

I think you're right -- c.f. discussion in Bug #31418 -- we can probably fix
the behavior higher up in the stack by making the behavior of +FakeBasicAuth
more flexible.

I actually got everything "behaving" by using mod_auth_anon, but the one-line
version of the subject DN does not match the LDAP entryDN, so authorization by
mod_authnz_ldap still failed--but at least I got that far!

-- 
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org


Mime
View raw message