You are viewing a plain text version of this content. The canonical link for it is here.

Posted to bugs@httpd.apache.org by bu...@apache.org on 2004/09/25 05:58:08 UTC

DO NOT REPLY [Bug 31418] New: - SSLUserName is not usable by other modules

DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUG 
RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT
<http://issues.apache.org/bugzilla/show_bug.cgi?id=31418>.
ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED AND 
INSERTED IN THE BUG DATABASE.

http://issues.apache.org/bugzilla/show_bug.cgi?id=31418

SSLUserName is not usable by other modules

           Summary: SSLUserName is not usable by other modules
           Product: Apache httpd-2.0
           Version: 2.0.51
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: Minor
          Priority: Other
         Component: mod_ssl
        AssignedTo: bugs@httpd.apache.org
        ReportedBy: kevin@kevlar.net


Because SSLUserName is implemented by a fixup hook, and fixup hooks happen 
after auth and access check hooks, other modules (like mod_authz_svn) cannot 
use this variable, since it isn't set until after they are done with 
authentication. A simple solution would be to move this block of code from the 
fixup hook to the end of the ssl_hook_Access method:

 /*
     * Set r->user if requested
     */
    if (dc->szUserName) {
        val = ssl_var_lookup(r->pool, r->server, r->connection,
                             r, (char *)dc->szUserName);
        if (val && val[0]) {
            r->user = val;
        }
    }

Then, the module can register the hook after mod_ssl.c and get the user 
variable.

---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org