VladPolskiy/apache_httpd
1
0
Fork 0
mirror of https://github.com/apache/httpd.git synced 2025-07-25 16:11:32 +00:00
Code Issues Packages Projects Releases Wiki Activity
34,172 Commits 62 Branches 304 Tags
trunk
Commit Graph

17 Commits

Author SHA1 Message Date
Graham Leggett
3e638ff283 core: Add the token_checker hook, that allows authentication to take 
place using mechanisms other than username/password, such as bearer
tokens.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1909409 13f79535-47bb-0310-9956-ffa450edef68
 2023-04-25 17:35:08 +00:00
Mike Rumph
85760859ca Fix spelling errors found by codespell. [skip ci] 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1873985 13f79535-47bb-0310-9956-ffa450edef68
 2020-02-13 18:15:57 +00:00
Eric Covener
7fbc93eac7 Restore support for the AUTH_HANDLED return code in AUTHN providers, 
like in 2.2, which allows authn provider to return their own status
in r->status (custom error code, or return a redirect)



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1499351 13f79535-47bb-0310-9956-ffa450edef68
 2013-07-03 12:13:50 +00:00
Paul Querna
3bc7336e01 Remove trailing comma on last enum member for authz_status 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1177497 13f79535-47bb-0310-9956-ffa450edef68
 2011-09-30 03:55:42 +00:00
Stefan Fritsch
1008c27260 Allow authz providers to check args while reading the config and allow 
them to cache parsed args.

Use this to check that argument to 'all' provider is 'granted' or 'denied'.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@998706 13f79535-47bb-0310-9956-ffa450edef68
 2010-09-19 17:55:47 +00:00
Stefan Fritsch
f14218c7ad The approach for allowing authorization by user or IP introduced in r956387, 
etc. causes problems because the authentication module calls
note_*_auth_failure if authentication fails. This is inappropriate if access is
later allowed because of the IP.

So, instead of calling the auth_checker hook even if authentication failed, we
introduce a new access_checker_ex hook that runs between the access_checker and
the check_user_id hooks. If an access_checker_ex functions returns OK, the
request will be allowed without authentication.

To make use of this, change mod_authz_core to walk the require blocks in the
access_checker_ex phase and deny/allow the request if the authz result does not
depend on an authenticated user. To distinguish a real AUTHZ_DENIED from an
authz provider from an authz provider needing an authenticated user, the latter
must return the new AUTHZ_DENIED_NO_USER code.



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@964156 13f79535-47bb-0310-9956-ffa450edef68
 2010-07-14 19:59:31 +00:00
Nick Kew
2ecd34c26d New module: mod_authn_cache 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@956966 13f79535-47bb-0310-9956-ffa450edef68
 2010-06-22 18:16:16 +00:00
Eric Covener
d38b48fe71 add a standard AUTHZ_PREFIX for, no MMN bump since it's just baked in if you 
build against it.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@949335 13f79535-47bb-0310-9956-ffa450edef68
 2010-05-29 02:20:24 +00:00
Chris Darroch
fa0fdfa2fc Fix handling of authz configurations, make default authz logic replicate 
2.2.x authz logic and support existing configurations (including .htaccess
files), and replace <Satisfy*>, Reject, and AuthzMergeRules directives
with Match, <Match*>, and AuthzMerge directives.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@709838 13f79535-47bb-0310-9956-ffa450edef68
 2008-11-02 04:01:32 +00:00
Chris Darroch
6200ffa41e remove unused AUTHZ_GROUP_NOTE define 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@709708 13f79535-47bb-0310-9956-ffa450edef68
 2008-11-01 15:01:35 +00:00
Chris Darroch
cc8a3547ca fix typo 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@709706 13f79535-47bb-0310-9956-ffa450edef68
 2008-11-01 14:53:09 +00:00
Paul Querna
e51cb1a4ed * include/mod_auth.h 
(authz_status): Remove trailing comma on enum.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@708822 13f79535-47bb-0310-9956-ffa450edef68
 2008-10-29 08:25:58 +00:00
Chris Darroch
1ffb6a6c9e convert tabs to spaces 
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@705462 13f79535-47bb-0310-9956-ffa450edef68
 2008-10-17 04:17:12 +00:00
Eric Covener
bb7398fce0 revert r672639 which lacked a necessary major bump, add a major MMN bump 
to account for the short-lived API addition/removal.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@678947 13f79535-47bb-0310-9956-ffa450edef68
 2008-07-22 23:49:51 +00:00
Ruediger Pluem
dcc70f6bbb * Include http_config.h to ensure that cmd_parms is defined, otherwise 
e.g. the perl test framework breaks.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@673999 13f79535-47bb-0310-9956-ffa450edef68
 2008-07-04 10:54:09 +00:00
Eric Covener
bbc850ee33 mod_auth_digest: Detect during startup when AuthDigestProvider 
is configured to use an incompatible provider via AuthnProviderAlias.
PR 45196 



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@672639 13f79535-47bb-0310-9956-ffa450edef68
 2008-06-29 16:42:43 +00:00
William A. Rowe Jr
df5ca37b48 As this is consumed by the core, mod_auth must reside in 
the serverwide include/'s.

git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@664169 13f79535-47bb-0310-9956-ffa450edef68
 2008-06-06 22:34:44 +00:00