You are viewing a plain text version of this content. The canonical link for it is here.
Posted to cvs@httpd.apache.org by sl...@apache.org on 2005/11/17 19:29:43 UTC
svn commit: r345301 - /httpd/httpd/trunk/docs/manual/mod/core.xml
Author: slive
Date: Thu Nov 17 10:29:41 2005
New Revision: 345301
URL: http://svn.apache.org/viewcvs?rev=345301&view=rev
Log:
* Deprecate AddOutputFilterByType
* Link up Require and AuthType to the relevant aaa modules.
Modified:
httpd/httpd/trunk/docs/manual/mod/core.xml
Modified: httpd/httpd/trunk/docs/manual/mod/core.xml
URL: http://svn.apache.org/viewcvs/httpd/httpd/trunk/docs/manual/mod/core.xml?rev=345301&r1=345300&r2=345301&view=diff
==============================================================================
--- httpd/httpd/trunk/docs/manual/mod/core.xml (original)
+++ httpd/httpd/trunk/docs/manual/mod/core.xml Thu Nov 17 10:29:41 2005
@@ -242,12 +242,14 @@
<context>virtual host</context><context>directory</context>
<context>.htaccess</context></contextlist>
<override>FileInfo</override>
-<compatibility>Available in Apache 2.0.33 and later</compatibility>
+<compatibility>Available in Apache 2.0.33 and later; deprecated in Apache 2.1 and later</compatibility>
<usage>
<p>This directive activates a particular output <a
href="../filter.html">filter</a> for a request depending on the
- response <glossary>MIME-type</glossary>.</p>
+ response <glossary>MIME-type</glossary>. Because of certain
+ problems discussed below, this directive is deprecated. The same
+ functionality is available using <module>mod_filter</module>.</p>
<p>The following example uses the <code>DEFLATE</code> filter, which
is provided by <module>mod_deflate</module>. It will compress all
@@ -513,18 +515,21 @@
<usage>
<p>This directive selects the type of user authentication for a
- directory. Only <code>Basic</code> and <code>Digest</code> are
- currently implemented.
+ directory. The authentication types available are
+ <code>Basic</code> (implemented by
+ <module>mod_auth_basic</module>) and <code>Digest</code>
+ (implemented by <module>mod_auth_digest</module>).</p>
+
+ <p>To implement authentication, you must also use the <directive
+ module="core">AuthName</directive> and <directive
+ module="core">Require</directive> directives. In addition, the
+ server must have an authentication-provider module such as
+ <module>mod_authn_file</module> and an authorization module such
+ as <module>mod_authz_user</module>.</p>
+</usage>
- It must be accompanied by <directive
- module="core">AuthName</directive> and <directive
- module="core">Require</directive> directives, and directives such
- as <directive module="mod_authn_file">AuthUserFile</directive> and
- <directive module="mod_authz_groupfile">AuthGroupFile</directive> to
- work.</p>
-</usage>
<seealso><a href="../howto/auth.html">Authentication, Authorization,
-and Access Control</a></seealso>
+ and Access Control</a></seealso>
</directivesynopsis>
<directivesynopsis>
@@ -2392,13 +2397,16 @@
<override>AuthConfig</override>
<usage>
- <p>This directive selects which authenticated users can access
- a resource. The allowed syntaxes are:</p>
+ <p>This directive selects which authenticated users can access a
+ resource. The restrictions are processed by authorization
+ modules. Some of the allowed syntaxes provided by
+ <module>mod_authz_owner</module> and
+ <module>mod_authz_groupfile</module> are:</p>
<dl>
<dt><code>Require user <var>userid</var> [<var>userid</var>]
...</code></dt>
- <dd>Only the named users can access the resource.</dd>
+ <dd>Only the named users can access the resource. (<module>mod_authz_user</module>)</dd>
<dt><code>Require group <var>group-name</var> [<var>group-name</var>]
...</code></dt>
@@ -2408,6 +2416,11 @@
<dd>All valid users can access the resource.</dd>
</dl>
+ <p>Other authorization modules that implement require options
+ include <module>mod_authnz_ldap</module>,
+ <module>mod_authz_dbm</module>, and
+ <module>mod_authz_owner</module>.</p>
+
<p><directive>Require</directive> must be accompanied by
<directive module="core">AuthName</directive> and <directive
module="core">AuthType</directive> directives, and directives such
@@ -2431,6 +2444,9 @@
<directive module="core" type="section">Limit</directive>
section.</p>
</usage>
+
+<seealso><a href="../howto/auth.html">Authentication, Authorization,
+ and Access Control</a></seealso>
<seealso><directive module="core">Satisfy</directive></seealso>
<seealso><module>mod_authz_host</module></seealso>
</directivesynopsis>
Re: svn commit: r345301 - /httpd/httpd/trunk/docs/manual/mod/core.xml
Posted by Joshua Slive <jo...@slive.ca>.
Justin Erenkrantz wrote:
> --On November 17, 2005 6:29:43 PM +0000 slive@apache.org wrote:
>
>> * Deprecate AddOutputFilterByType
>
> I disagree. IMHO, recommending switching to mod_filter is like telling
> people to switch from Alias to mod_rewrite.
>
> As I said when this was discussed on the list, the AddOutputFilterByType
> directive interface could be implemented by mod_filter under the hood.
> However, I believe the user interface presented by AddOutputFilterByType
> is exactly right for the problem at hand. -- justin
I was just making the directive docs consistent with filter.xml. But I
agree both ways: the current AddOutputFilterByType is more confusing
than useful, but its simple interface would be nice to maintain. I
suggest we leave it deprecated until someone fixes it.
Joshua.
Re: svn commit: r345301 -
/httpd/httpd/trunk/docs/manual/mod/core.xml
Posted by Justin Erenkrantz <ju...@erenkrantz.com>.
--On November 17, 2005 6:29:43 PM +0000 slive@apache.org wrote:
> * Deprecate AddOutputFilterByType
I disagree. IMHO, recommending switching to mod_filter is like telling
people to switch from Alias to mod_rewrite.
As I said when this was discussed on the list, the AddOutputFilterByType
directive interface could be implemented by mod_filter under the hood.
However, I believe the user interface presented by AddOutputFilterByType is
exactly right for the problem at hand. -- justin