Return-Path: Delivered-To: apmail-httpd-dev-archive@www.apache.org Received: (qmail 35462 invoked from network); 20 Mar 2009 17:15:52 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 20 Mar 2009 17:15:52 -0000 Received: (qmail 34354 invoked by uid 500); 20 Mar 2009 17:15:49 -0000 Delivered-To: apmail-httpd-dev-archive@httpd.apache.org Received: (qmail 34302 invoked by uid 500); 20 Mar 2009 17:15:48 -0000 Mailing-List: contact dev-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: dev@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list dev@httpd.apache.org Received: (qmail 34293 invoked by uid 99); 20 Mar 2009 17:15:48 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 20 Mar 2009 10:15:48 -0700 X-ASF-Spam-Status: No, hits=1.2 required=10.0 tests=SPF_NEUTRAL X-Spam-Check-By: apache.org Received-SPF: neutral (athena.apache.org: local policy) Received: from [64.202.165.33] (HELO smtpauth11.prod.mesa1.secureserver.net) (64.202.165.33) by apache.org (qpsmtpd/0.29) with SMTP; Fri, 20 Mar 2009 17:15:39 +0000 Received: (qmail 26972 invoked from network); 20 Mar 2009 17:15:17 -0000 Received: from unknown (83.98.239.161) by smtpauth11.prod.mesa1.secureserver.net (64.202.165.33) with ESMTP; 20 Mar 2009 17:15:16 -0000 Message-ID: <49C3CF1E.4090609@rowe-clan.net> Date: Fri, 20 Mar 2009 18:15:10 +0100 From: "William A. Rowe, Jr." User-Agent: Thunderbird 2.0.0.21 (Windows/20090302) MIME-Version: 1.0 To: dev@httpd.apache.org Subject: Re: test framework/mod_authany's check user id hook vs. mod_ssl's References: <20090320162518.GA9478@redhat.com> In-Reply-To: <20090320162518.GA9478@redhat.com> Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org Joe Orton wrote: > On Thu, Mar 19, 2009 at 04:36:42PM -0400, Jeff Trawick wrote: >> Beyond the mod_authany question, why doesn't mod_ssl declare its check user >> id hook really-first if it can generate the basic auth? (Let the extremely >> limited number of modules which generate basic auth headers fight it out via >> predecessor/successor lists.) > > I doubt much thought has gone into it. > > Since, as you say, all the FakeBasic code needs to happen before the > real check_user_id hooks run, I'd reckon it would make more sense to > move it to e.g. the post_read_request hook (ssl_hook_ReadReq), rather > than trying harder to win the hook ordering game? For that matter, why does SSLRequire still exist? Has nothing to do at all with SSL ;-) Perhaps it's time to start doing what Mr Laurie wanted to accomplish in the first place, and (saving functionality elsewhere) pare mod_ssl to the bone of what it is meant to do? socache was a good start, obviously :)