httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ben Laurie <...@algroup.co.uk>
Subject Re: module ordering in Configuration.tmpl
Date Sat, 14 Aug 1999 14:13:33 GMT
"Roy T. Fielding" wrote:
> 
> >Hmmm:
> >> revision 1.120
> >> date: 1999/08/09 06:25:24;  author: fielding;  state: Exp;  lines: +13 -12
> >> Move mod_auth_digest to where it makes sense.  If there is a problem
> >> with the ordering here, then we should move all the auth modules and
> >> not just the latest one.
> >
> >Unfortunately there is a problem: mod_auth_digest must be listed
> >*before* libproxy because because the WWW-Authenticate and
> >Proxy-Authenticate headers are parsed in the post-read-request phase
> >and it needs to know if this is a proxy request or not. With the
> >current ordering, using Digest auth in a proxy setting will fail
> >miserably.
> >
> >Is there any problem with moving any other auth module up (i.e. have
> >them all do their processing *after* mod_proxy)?
> 
> Wouldn't this equally apply to the other forms of authentication?
> Is it safe to move all of the auth modules above all of the URI
> manipulation modules?  Maybe this is the source of other problems
> that we haven't been able to fix before.
> 
> BTW, dependencies like that MUST be included in the comments for
> Configuration, not left to trial and error.

Yep, and then we stand some chance of coding them in 2.0, too...

Cheers,

Ben.

--
http://www.apache-ssl.org/ben.html

"My grandfather once told me that there are two kinds of people: those
who work and those who take the credit. He told me to try to be in the
first group; there was less competition there."
     - Indira Gandhi

Mime
View raw message