You are viewing a plain text version of this content. The canonical link for it is here.
Posted to cvs@httpd.apache.org by bn...@apache.org on 2005/12/30 01:07:31 UTC
svn commit: r359935 -
/httpd/httpd/branches/authz-dev/modules/aaa/mod_authz_core.c
Author: bnicholes
Date: Thu Dec 29 16:07:29 2005
New Revision: 359935
URL: http://svn.apache.org/viewcvs?rev=359935&view=rev
Log:
If there aren't any providers configured, then just decline allowing other hook based authorization modules to have a crack at it
Modified:
httpd/httpd/branches/authz-dev/modules/aaa/mod_authz_core.c
Modified: httpd/httpd/branches/authz-dev/modules/aaa/mod_authz_core.c
URL: http://svn.apache.org/viewcvs/httpd/httpd/branches/authz-dev/modules/aaa/mod_authz_core.c?rev=359935&r1=359934&r2=359935&view=diff
==============================================================================
--- httpd/httpd/branches/authz-dev/modules/aaa/mod_authz_core.c (original)
+++ httpd/httpd/branches/authz-dev/modules/aaa/mod_authz_core.c Thu Dec 29 16:07:29 2005
@@ -69,8 +69,9 @@
- Determine if setting the AUTHZ_PROVIDER_NAME_NOTE note
is even necessary. This was used in authn to support
authn_alias. Is there a need for an authz_alias?
-- Remove the Satisfy directive and replace it with the
+X- Remove the Satisfy directive functionality and replace it with the
<RequireAll>, <RequireOne> directives
+- Remove the Satisfy directive
X- Implement the <RequireAll> <RequireOne> block directives
to handle the 'and' and 'or' logic for authorization.
X- Remove the AuthzXXXAuthoritative directives from all of
@@ -79,9 +80,9 @@
if the argument is true
X- Fold the Reject directive into the <RequireAll> <RequireOne>
logic
-- Reimplement the host based authorization 'allow', 'deny'
+X- Reimplement the host based authorization 'allow', 'deny'
and 'order' as authz providers
-
+X- Remove the 'allow', 'deny' and 'order' directives
*/
typedef struct provider_alias_rec {
@@ -589,7 +590,7 @@
if (!conf->providers) {
ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r,
"no authorization providers configured");
- return HTTP_UNAUTHORIZED;
+ return DECLINED;
}
current_provider = conf->providers;