httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From minf...@apache.org
Subject svn commit: r1523267 - in /httpd/httpd/branches/2.4.x: ./ CHANGES STATUS modules/aaa/mod_authz_groupfile.c modules/aaa/mod_authz_user.c
Date Sat, 14 Sep 2013 15:15:39 GMT
Author: minfrin
Date: Sat Sep 14 15:15:38 2013
New Revision: 1523267

URL: http://svn.apache.org/r1523267
Log:
authz_groupfile/authz_user: don't log at ERROR for AUTHZ_DENIED, since
authz_core is collecting providers results. Subsequently reported in PR55523?

trunk patch: http://svn.apache.org/r1517366

Submitted by: covener
Reviewed by: jim, humbedooh

Modified:
    httpd/httpd/branches/2.4.x/   (props changed)
    httpd/httpd/branches/2.4.x/CHANGES
    httpd/httpd/branches/2.4.x/STATUS
    httpd/httpd/branches/2.4.x/modules/aaa/mod_authz_groupfile.c
    httpd/httpd/branches/2.4.x/modules/aaa/mod_authz_user.c

Propchange: httpd/httpd/branches/2.4.x/
------------------------------------------------------------------------------
  Merged /httpd/httpd/trunk:r1517366

Modified: httpd/httpd/branches/2.4.x/CHANGES
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/CHANGES?rev=1523267&r1=1523266&r2=1523267&view=diff
==============================================================================
--- httpd/httpd/branches/2.4.x/CHANGES [utf-8] (original)
+++ httpd/httpd/branches/2.4.x/CHANGES [utf-8] Sat Sep 14 15:15:38 2013
@@ -2,6 +2,10 @@
 
 Changes with Apache 2.4.7
 
+  *) mod_authz_groupfile, mod_authz_user: Reduce severity of AH01671 and AH01663
+     from ERROR to DEBUG, since these modules do not know what mod_authz_core
+     is doing with their AUTHZ_DENIED return value. [Eric Covener]
+
   *) mod_ldap: add TRACE5 for LDAP retries. [Eric Covener]
 
   *) mod_ldap: retry on an LDAP timeout during authn. [Eric Covener]

Modified: httpd/httpd/branches/2.4.x/STATUS
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/STATUS?rev=1523267&r1=1523266&r2=1523267&view=diff
==============================================================================
--- httpd/httpd/branches/2.4.x/STATUS (original)
+++ httpd/httpd/branches/2.4.x/STATUS Sat Sep 14 15:15:38 2013
@@ -126,13 +126,6 @@ PATCHES ACCEPTED TO BACKPORT FROM TRUNK:
     +1: rjung, jim, humbedooh
 
 
-  * authz_groupfile/authz_user: don't log at ERROR for AUTHZ_DENIED, since 
-    authz_core is collecting providers results. Subsequently reported in PR55523?
-    trunk patch: http://svn.apache.org/r1517366
-    2.4.x: trunk works
-    +1: covener, jim, humbedooh
-
-  
 PATCHES PROPOSED TO BACKPORT FROM TRUNK:
   [ New proposals should be added at the end of the list ]
 

Modified: httpd/httpd/branches/2.4.x/modules/aaa/mod_authz_groupfile.c
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/modules/aaa/mod_authz_groupfile.c?rev=1523267&r1=1523266&r2=1523267&view=diff
==============================================================================
--- httpd/httpd/branches/2.4.x/modules/aaa/mod_authz_groupfile.c (original)
+++ httpd/httpd/branches/2.4.x/modules/aaa/mod_authz_groupfile.c Sat Sep 14 15:15:38 2013
@@ -249,7 +249,7 @@ static authz_status filegroup_check_auth
         return AUTHZ_DENIED;
     }
 
-    ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, APLOGNO(01671)
+    ap_log_rerror(APLOG_MARK, APLOG_DEBUG, 0, r, APLOGNO(01671)
                   "Authorization of user %s to access %s failed, reason: "
                   "user is not part of the 'require'ed file group.",
                   r->user, r->uri);

Modified: httpd/httpd/branches/2.4.x/modules/aaa/mod_authz_user.c
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.4.x/modules/aaa/mod_authz_user.c?rev=1523267&r1=1523266&r2=1523267&view=diff
==============================================================================
--- httpd/httpd/branches/2.4.x/modules/aaa/mod_authz_user.c (original)
+++ httpd/httpd/branches/2.4.x/modules/aaa/mod_authz_user.c Sat Sep 14 15:15:38 2013
@@ -62,7 +62,7 @@ static authz_status user_check_authoriza
         }
     }
 
-    ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, APLOGNO(01663)
+    ap_log_rerror(APLOG_MARK, APLOG_DEBUG, 0, r, APLOGNO(01663)
                   "access to %s failed, reason: user '%s' does not meet "
                   "'require'ments for user to be allowed access",
                   r->uri, r->user);



Mime
View raw message