You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@httpd.apache.org by bu...@apache.org on 2008/07/14 22:50:06 UTC
DO NOT REPLY [Bug 45393] Apache returns 500 Error when no LDAP
credentials are supplied
https://issues.apache.org/bugzilla/show_bug.cgi?id=45393
--- Comment #1 from Eric Covener <co...@gmail.com> 2008-07-14 13:50:06 PST ---
I went down this path for another PR (or issue raised on IRC) a few months ago.
The empty userid is permitted by HTTP basic auth, and some LDAP SDKs do support
the filter generated such as "attr=" with no value. I believe I lost the heart
to try to change it when both openldap and Tivoli directory server supported
the syntax.
if you can find chapter and verse of the LDAP filter syntax that says it's
forbidden, mod_authnz_ldap would be able to short-circuit sending the DN search
-- otherwise we'd have to add some special-case MSSDK logic to do the same (to
prevent the 500, request still forbidden obviously)
--
Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org