You are viewing a plain text version of this content. The canonical link for it is here.

Posted to bugs@httpd.apache.org by bu...@apache.org on 2022/12/23 04:58:45 UTC

[Bug 66398] New: AUTHORIZE_ variables not set when Require valid-user not included in

https://bz.apache.org/bugzilla/show_bug.cgi?id=66398

            Bug ID: 66398
           Summary: AUTHORIZE_ variables not set when Require valid-user
                    not included in <Require*/>
           Product: Apache httpd-2
           Version: 2.4.54
          Hardware: PC
            Status: NEW
          Severity: normal
          Priority: P2
         Component: mod_authnz_ldap
          Assignee: bugs@httpd.apache.org
          Reporter: piotr.koper@gmail.com
  Target Milestone: ---

With:

<AuthzProviderAlias ldap-group ldap1 "...">
  AuthLDAPURL "ldap://...?sAMAccountName,displayName,mail?sub?(objectClass=*)"
  ...
</AuthzProviderAlias>

and:

a)
  Require valid-user
  <RequireAny>
    Require group ldap1
  </RequireAny>
or:
b)
  <RequireAll>
    Require valid-user
    <RequireAny>
      Require group ldap1
    </RequireAny>
  </RequireAll>

Apache HTTPD 2.4.54 properly validates if user is valid AND validates if user
is member of ldap1. Both a) and b) rules work as expected.

Problem: mod_authnz_ldap sets AUHTHORIZE_ variables (AUTHORIZE_DISPLAYNAME,
AUTHORIZE_MAIL) only for b),
i.e. mod_authnz_ldap does not set AUHTHORIZE_ variables for the a) case.

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org

[Bug 66398] AUTHORIZE_ variables not set when Require valid-user not included in

Posted by bu...@apache.org.

https://bz.apache.org/bugzilla/show_bug.cgi?id=66398

Piotr Koper <pi...@gmail.com> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 OS|                            |All
         Resolution|---                         |INVALID
             Status|NEW                         |RESOLVED

--- Comment #1 from Piotr Koper <pi...@gmail.com> ---
(In reply to Piotr Koper from comment #0)
> Apache HTTPD 2.4.54 properly validates if user is valid AND validates if
> user is member of ldap1. Both a) and b) rules work as expected.

Sorry, I have checked once again. a) and b) are not the same.

I'm closing as INVALID.

-- 
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org