httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Brad Nicholes" <BNICHO...@novell.com>
Subject Re: proposed authz rewrite (was:Re: Suggest renaming mod_authz_host to mod_access_host)
Date Mon, 28 Nov 2005 15:33:14 GMT


>>> On 11/28/2005 at 4:51:21 am, in message
<20051128034742.B28911@skutsje.san.webweaving.org>,
dirkx@webweaving.org 
wrote:

> So one either needs a shared 'fan out' on AAA level for the various
> authType(s) - or alternatively to completely kill AuthType and let
each of
> the AAA modules provide something like AuthBasic on/off, AuthDigest
on/off
> and let each provide their -own- variant on AuthName; i.e.
AuthBasicRealm
> or wathever. Killing AuthtType is good in that it propably lets you
> combine different Accesses with Auth much cleaner.
> 
> Dw

Good point.  After thinking about it, it seems that AuthType could be
eliminated completely.  The authentication type is already implied by
the use of the directives AuthBasicProvider, AuthDigestProvider or any
other AuthXXXProvider that may come along in the future.  Does anybody
see a need to keep AuthType around at all under the new authentication
architecture?

Brad

Mime
View raw message