httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mike Klein <>
Subject Re: [users@httpd] mod_auth_ldap, DN and AUTHENTICATE_UID
Date Sat, 18 Oct 2003 22:26:32 GMT
Ace Suares wrote:

>Hi Folks,
>Sorry to drop into your party unnannounced ;-) 
>I just installed apache2 with mod_auth_ldap and php4 on a Suse 8.2 machine.
>So far so good. However, when I ask a list of all $_SERVER variables that are 
>avaliable to PHP, I get the usual list PLUS this one I've never seen before:
>It has no value, apparently. Maybe I need to move this question to PHP-lists, 
>but even when I google on 'AUTHENTICATE_UID', I get zero hits... so I wonder 
>if anyone ever seen that one before and know what it means.
>The other thing is about mod_auth_ldap, and if this is the wrong list, please 
>point me to where to go!
>I was wondering if the DN that is found by mod_auth_ldap is stored somewhere 
>in an accessible server variable.
>For instance, if I log in (through .htaccess, which does the LDAP lookup) as
>user: me@domain
>password: absomethingcd
>I am getting authenticated just fine. Internally, a lookup is done, which 
>results in a DN like: 'cn=ace,dc=example,dc=com'
>It would be very handy to have this dn available (in PHP) as 
>'$_SERVER['mod_ault_ldap_athenticated_dn'] (or similar).
>is this possible ?
#1. Question is probably best/quickest answered by posting question to 
owners of mod_auth_ldap. Go to the module home page and you'll find 
support emails, discussion forums, mailing lists, etc.

#2. Environment value should <probably> be set to a variable in apache 
httpd.conf indicating which ldap attr to use as uid...or it s/be set to 
actual authenticated uid (or rdn of authenticated user)...I haven't read 
docs. When I authenticate via realm authentication (simple 
user/password) or ssl certificate authentication (user rdn, 
emailAddress)...I do get apache server vars for these values.

I am currently using mod_auth_pam for authentication, as this gives 
options for things like ldap, mysql, kerberos, and other auth methods.

#3. If mod_auth_ldap is storing things in environment 
should be able to see it via your phpinfo() page/status or via apache 
info handler.

Sorry I can't help more...


The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message