httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
Subject svn commit: r359935 - /httpd/httpd/branches/authz-dev/modules/aaa/mod_authz_core.c
Date Fri, 30 Dec 2005 00:07:31 GMT
Author: bnicholes
Date: Thu Dec 29 16:07:29 2005
New Revision: 359935

If there aren't any providers configured, then just decline allowing other hook based authorization
modules to have a crack at it


Modified: httpd/httpd/branches/authz-dev/modules/aaa/mod_authz_core.c
--- httpd/httpd/branches/authz-dev/modules/aaa/mod_authz_core.c (original)
+++ httpd/httpd/branches/authz-dev/modules/aaa/mod_authz_core.c Thu Dec 29 16:07:29 2005
@@ -69,8 +69,9 @@
 - Determine if setting the AUTHZ_PROVIDER_NAME_NOTE note
    is even necessary.  This was used in authn to support
    authn_alias.  Is there a need for an authz_alias?
-- Remove the Satisfy directive and replace it with the
+X- Remove the Satisfy directive functionality and replace it with the
    <RequireAll>, <RequireOne> directives
+- Remove the Satisfy directive 
 X- Implement the <RequireAll> <RequireOne> block directives
    to handle the 'and' and 'or' logic for authorization.
 X- Remove the AuthzXXXAuthoritative directives from all of
@@ -79,9 +80,9 @@
    if the argument is true
 X- Fold the Reject directive into the <RequireAll> <RequireOne>
-- Reimplement the host based authorization 'allow', 'deny'
+X- Reimplement the host based authorization 'allow', 'deny'
    and 'order' as authz providers   
+X- Remove the 'allow', 'deny' and 'order' directives      
 typedef struct provider_alias_rec {
@@ -589,7 +590,7 @@
     if (!conf->providers) {
         ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r,
                       "no authorization providers configured");
-        return HTTP_UNAUTHORIZED;
+        return DECLINED;
     current_provider = conf->providers;

View raw message