Return-Path: Delivered-To: apmail-httpd-docs-archive@www.apache.org Received: (qmail 32222 invoked from network); 23 Jan 2007 17:37:48 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 23 Jan 2007 17:37:48 -0000 Received: (qmail 46928 invoked by uid 500); 23 Jan 2007 17:37:43 -0000 Delivered-To: apmail-httpd-docs-archive@httpd.apache.org Received: (qmail 46901 invoked by uid 500); 23 Jan 2007 17:37:43 -0000 Mailing-List: contact docs-help@httpd.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: docs@httpd.apache.org List-Id: Delivered-To: mailing list docs@httpd.apache.org Received: (qmail 46879 invoked by uid 99); 23 Jan 2007 17:37:42 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 23 Jan 2007 09:37:42 -0800 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received-SPF: neutral (herse.apache.org: local policy) Received: from [82.195.155.60] (HELO dochas.stdlib.net) (82.195.155.60) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 23 Jan 2007 09:37:34 -0800 Received: from firebird by dochas.stdlib.net with local (Exim 4.50) id 1H9Pa5-0004Ul-9T for docs@httpd.apache.org; Tue, 23 Jan 2007 17:37:13 +0000 Date: Tue, 23 Jan 2007 17:37:13 +0000 From: Noirin Plunkett To: docs@httpd.apache.org Subject: Re: [PATCH] clarification of fallthrough in mod_authnz_ldap Message-ID: <20070123173713.GA16367@dochas.stdlib.net> Reply-To: noirin@apache.org References: <839aec700701230913u4ff050f7r6425472af6428988@mail.gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline In-Reply-To: <839aec700701230913u4ff050f7r6425472af6428988@mail.gmail.com> User-Agent: Mutt/1.5.9i X-Virus-Checked: Checked by ClamAV on apache.org +1 Sounds good, thanks for this =) Noirin On Tue, Jan 23, 2007 at 10:13:43AM -0700, Darren Spruell wrote: > I wanted to propose a point of clarification to the documentation > surrounding the authorization phase described for mod_authnz_ldap. > This point is clarified a little further down in the file but could > stand to be more clear outside of the specific place it is mentioned. > > Index: manual/mod/mod_authnz_ldap.xml > =================================================================== > --- manual/mod/mod_authnz_ldap.xml (revision 499068) > +++ manual/mod/mod_authnz_ldap.xml (working copy) > @@ -226,8 +226,14 @@ >

otherwise, deny or decline access

> > > -

Other Require values may also > be > - used which may require loading additional authorization modules.

> +

Other Require values may also > + be used which may require loading additional authorization modules. > + Note that if you use a Require > + value from another authorization module, you will need to ensure that > + AuthzLDAPAuthoritative > + is set to off to allow the authorization phase to fall > + back to the module providing the alternate > + Require value.

> >

Grant access if there is a require > > -- > Darren Spruell > phatbuckett@gmail.com > > --------------------------------------------------------------------- > To unsubscribe, e-mail: docs-unsubscribe@httpd.apache.org > For additional commands, e-mail: docs-help@httpd.apache.org > > --------------------------------------------------------------------- To unsubscribe, e-mail: docs-unsubscribe@httpd.apache.org For additional commands, e-mail: docs-help@httpd.apache.org