You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@httpd.apache.org by bu...@apache.org on 2022/12/23 04:58:45 UTC
[Bug 66398] New: AUTHORIZE_ variables not set when Require valid-user not included in
https://bz.apache.org/bugzilla/show_bug.cgi?id=66398
Bug ID: 66398
Summary: AUTHORIZE_ variables not set when Require valid-user
not included in <Require*/>
Product: Apache httpd-2
Version: 2.4.54
Hardware: PC
Status: NEW
Severity: normal
Priority: P2
Component: mod_authnz_ldap
Assignee: bugs@httpd.apache.org
Reporter: piotr.koper@gmail.com
Target Milestone: ---
With:
<AuthzProviderAlias ldap-group ldap1 "...">
AuthLDAPURL "ldap://...?sAMAccountName,displayName,mail?sub?(objectClass=*)"
...
</AuthzProviderAlias>
and:
a)
Require valid-user
<RequireAny>
Require group ldap1
</RequireAny>
or:
b)
<RequireAll>
Require valid-user
<RequireAny>
Require group ldap1
</RequireAny>
</RequireAll>
Apache HTTPD 2.4.54 properly validates if user is valid AND validates if user
is member of ldap1. Both a) and b) rules work as expected.
Problem: mod_authnz_ldap sets AUHTHORIZE_ variables (AUTHORIZE_DISPLAYNAME,
AUTHORIZE_MAIL) only for b),
i.e. mod_authnz_ldap does not set AUHTHORIZE_ variables for the a) case.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org
[Bug 66398] AUTHORIZE_ variables not set when Require valid-user not included in
Posted by bu...@apache.org.
https://bz.apache.org/bugzilla/show_bug.cgi?id=66398
Piotr Koper <pi...@gmail.com> changed:
What |Removed |Added
----------------------------------------------------------------------------
OS| |All
Resolution|--- |INVALID
Status|NEW |RESOLVED
--- Comment #1 from Piotr Koper <pi...@gmail.com> ---
(In reply to Piotr Koper from comment #0)
> Apache HTTPD 2.4.54 properly validates if user is valid AND validates if
> user is member of ldap1. Both a) and b) rules work as expected.
Sorry, I have checked once again. a) and b) are not the same.
I'm closing as INVALID.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org