httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Dmitri Colebatch" <>
Subject [users@httpd] Re: authentication - one of several groups
Date Mon, 23 Jul 2007 23:29:51 GMT
I'm assuming that the lack of response means no one else is using this
feature.  I'd like to ask one more time before raising a bug - can
anyone see any reason why I shouldn't raise a bug for this?


On 7/20/07, Dmitri Colebatch <> wrote:
> Hi all,
> This is a problem thats been irking me for a while and I'm hopeful
> that some other users might be able to shed some light on the issue.
> We use LDAP authentication and would like to allow access to a
> location if a user is in one of a number of groups.  From reading
> I had hoped
> that something like this might work:
>  <Location /foo>
>    AuthType Basic
>    AuthName "LDAP Authentication"
>    AuthLDAPUrl ....
>    AuthLDAPBindDN ...
>    AuthLDAPBindPassword ...
>    require group cn=tjunction.development_team,o=groups
> cn=tjunction.papis.product.viewer,ou=internal,o=groups
>  </Location>
> But that refuses to authorize me.  Note that if I have either one of
> those groups I am authenticated successfully.  I had thought perhaps
> that the multiple groups meant that you had be in _all_ groups rather
> than _either_ group, but this behaviour disproves that theory.
> To me, it appears that this simply doesn't work as documented.  Can
> someone see anything I'm doing wrong?  Anyone else have to deal with
> this requirement?
> cheers,
> dim

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message