httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Artem L" <...@itm.nkz.ru>
Subject question concerning with authentication process
Date Sun, 18 Jul 2004 20:19:50 GMT
hello :)

I want to have a way to perform authentication process for the certain
recources in the directory, and process requests for the another resources
in the same directory without any authentication.

I'm working at implementing acl extension for webdav - and the
authentiacation will based on access control list concerning with certain
recource. And this access control list will be modified during runtime. And
I want to use different *standard* apache authentication modules.

Actually, I've written the some draft version - and to perfome such
authentication I've added another hook (not_require_authentication) and made
some changes in the ap_some_auth_required function

AP_DECLARE(int) ap_some_auth_required(request_rec *r)
{
    /* Is there a require line configured for the type of *this* req? */

    const apr_array_header_t *reqs_arr = ap_requires(r);
    require_line *reqs;
    int i;

    if (!reqs_arr) {
        return 0;
    }

    reqs = (require_line *) reqs_arr->elts;

    for (i = 0; i < reqs_arr->nelts; ++i) {
        if (reqs[i].method_mask & (AP_METHOD_BIT << r->method_number)) {
     if (ap_run_not_require_authentication(r) == OK)
                return 0;
            else
                return 1;
        }
    }

    return 0;
}

Does it have sence or there is another standrd way (without introducing
addtional hooks) to use standard authentication modules with access control
modifing at runtime?

I've read Apache Server Project Plan - and found several points concerning
with authentication - but I have not found the implementation of these
points in the 2.1 branch
may be I've missed something?

Your advice will be very much appreciated :)

thank you
Artem Lantsev



Mime
View raw message