httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From bnicho...@apache.org
Subject svn commit: r368978 - in /httpd/httpd/trunk/modules/aaa: config.m4 mod_access_compat.c mod_authz_core.c
Date Sat, 14 Jan 2006 05:06:41 GMT
Author: bnicholes
Date: Fri Jan 13 21:06:39 2006
New Revision: 368978

URL: http://svn.apache.org/viewcvs?rev=368978&view=rev
Log:
clean up some left-over debugging code and comments

Modified:
    httpd/httpd/trunk/modules/aaa/config.m4
    httpd/httpd/trunk/modules/aaa/mod_access_compat.c
    httpd/httpd/trunk/modules/aaa/mod_authz_core.c

Modified: httpd/httpd/trunk/modules/aaa/config.m4
URL: http://svn.apache.org/viewcvs/httpd/httpd/trunk/modules/aaa/config.m4?rev=368978&r1=368977&r2=368978&view=diff
==============================================================================
--- httpd/httpd/trunk/modules/aaa/config.m4 (original)
+++ httpd/httpd/trunk/modules/aaa/config.m4 Fri Jan 13 21:06:39 2006
@@ -48,8 +48,9 @@
 dnl keep the bad guys out.
 APACHE_MODULE(authz_default, authorization control backstopper, , , yes)
 
-dnl - and just in case all of the above punt; a default handler to
-dnl keep the bad guys out.
+dnl - host access control compatibility modules. Implements Order, Allow,
+dnl Deny, Satisfy for backward compatibility.  These directives have been
+dnl deprecated in 2.4.
 APACHE_MODULE(access_compat, mod_access compatibility, , , most)
 
 dnl these are the front-end authentication modules

Modified: httpd/httpd/trunk/modules/aaa/mod_access_compat.c
URL: http://svn.apache.org/viewcvs/httpd/httpd/trunk/modules/aaa/mod_access_compat.c?rev=368978&r1=368977&r2=368978&view=diff
==============================================================================
--- httpd/httpd/trunk/modules/aaa/mod_access_compat.c (original)
+++ httpd/httpd/trunk/modules/aaa/mod_access_compat.c Fri Jan 13 21:06:39 2006
@@ -370,8 +370,6 @@
     return ret;
 }
 
-APR_DECLARE_OPTIONAL_FN(int, ap_satisfies, (request_rec *r));
-
 static void register_hooks(apr_pool_t *p)
 {
     APR_REGISTER_OPTIONAL_FN(ap_satisfies);

Modified: httpd/httpd/trunk/modules/aaa/mod_authz_core.c
URL: http://svn.apache.org/viewcvs/httpd/httpd/trunk/modules/aaa/mod_authz_core.c?rev=368978&r1=368977&r2=368978&view=diff
==============================================================================
--- httpd/httpd/trunk/modules/aaa/mod_authz_core.c (original)
+++ httpd/httpd/trunk/modules/aaa/mod_authz_core.c Fri Jan 13 21:06:39 2006
@@ -101,8 +101,6 @@
     authz_provider_list *providers;
     authz_request_state req_state;
     int req_state_level;
-//    int some_authz;
-//    char *path;
 } authz_core_dir_conf;
 
 typedef struct authz_core_srv_conf {
@@ -119,7 +117,6 @@
 
     conf->req_state = AUTHZ_REQSTATE_ONE;
     conf->req_state_level = 0;
-//    conf->some_authz = -1;
     return (void *)conf;
 }
 
@@ -160,9 +157,6 @@
     authz_provider_list *newp;
     const char *t, *w;
 
-//    conf->some_authz = 1;
-//    conf->path = apr_pstrdup(cmd->pool, cmd->path);
-
     newp = apr_pcalloc(cmd->pool, sizeof(authz_provider_list));
 
     t = arg;
@@ -399,9 +393,6 @@
     const char *errmsg;
     authz_request_state old_reqstate;
     authz_core_dir_conf *conf = (authz_core_dir_conf*)mconfig;
-//  authz_core_srv_conf *authcfg = 
-//      (authz_core_srv_conf *)ap_get_module_config(cmd->server->module_config,
-//                                                   &authz_core_module);
 
     if (endp == NULL) {
         return apr_pstrcat(cmd->pool, cmd->cmd->name,
@@ -619,12 +610,11 @@
 
         switch (auth_result) {
             case AUTHZ_DENIED:
-                /* XXX If the deprecated Satisfy directive is set to Any and 
-                   authorization as denied, then check to see what
-                   the access control stage said.  Just the if statement
+                /* XXX If the deprecated Satisfy directive is set to anything
+                   but ANY a failure in access control or authz will cause
+                   an HTTP_UNAUTHORIZED.  Just the if statement
                    should be removed in 3.0 when the Satisfy directive
                    goes away. */
-//                if (!note || ((note[0] == 'N') && (ap_satisfies(r) != SATISFY_ANY)))
{
                 if (!note || (ap_satisfies(r) != SATISFY_ANY) || (note[0] == 'N')) {
                     ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r,
                                   "user %s: authorization failure for \"%s\": ",



Mime
View raw message