summaryrefslogtreecommitdiffstats
path: root/modules/aaa (follow)
Commit message (Collapse)AuthorAgeFilesLines
* Fix a comment similar to r1638072Christophe Jaillet2016-04-171-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1739569 13f79535-47bb-0310-9956-ffa450edef68
* Silent a smatch warning:Christophe Jaillet2016-03-111-1/+1
| | | | | | mod_auth_form.c:626 get_form_auth() warn: variable dereferenced before check 'sent_user' (see line 616) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1734635 13f79535-47bb-0310-9956-ffa450edef68
* mod_authz_host: add a new "forward-dns" authorization typeFabien Coelho2016-03-101-0/+75
| | | | | | | This new type does not rely on reverse DNS lookups. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1734412 13f79535-47bb-0310-9956-ffa450edef68
* Use ap_array_str_contains to simplify codeChristophe Jaillet2016-03-051-17/+15
| | | | | | | Remove a useless test (groups is always NULL) Improve some style git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1733691 13f79535-47bb-0310-9956-ffa450edef68
* Use ap_array_str_contains to simplify codeChristophe Jaillet2016-03-031-9/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1733523 13f79535-47bb-0310-9956-ffa450edef68
* PR59039 Digest not working with ap_expr based AuthName Eric Covener2016-02-221-23/+28
| | | | | | | | | | Stop caching the configured realm during config processing and always call ap_auth_name(r) to determine (=evaluate potential expression) the configured realm git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1731662 13f79535-47bb-0310-9956-ffa450edef68
* hostname: Test and log useragent_host per-request across various modules,William A. Rowe Jr2016-02-122-8/+3
| | | | | | | | | | | | | including the scoreboard, expression and rewrite engines, setenvif, authz_host, access_compat, custom logging, ssl and REMOTE_HOST variables. PR55348 [William Rowe] This is the complete change set which applies cleanly to 2.4.x as well, the server/scoreboard.c will follow, which does not apply due to drift. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1729930 13f79535-47bb-0310-9956-ffa450edef68
* Added many log numbers to log statements thatRainer Jung2016-01-191-2/+2
| | | | | | | | | had none. Those were not detected by the coccinelle script. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1725485 13f79535-47bb-0310-9956-ffa450edef68
* Added many log numbers to log statements thatRainer Jung2016-01-191-2/+2
| | | | | | | | | | | had none. Handled all files in modules/. I used the coccinelle script provided by Stefan. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1725392 13f79535-47bb-0310-9956-ffa450edef68
* Do not use the magic string "directory". Use the corresponding global ↵Christophe Jaillet2015-12-111-1/+1
| | | | | | variable as in all other places of the module. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1719257 13f79535-47bb-0310-9956-ffa450edef68
* Use 'ap_pbase64decode' to simplify code.Christophe Jaillet2015-11-281-5/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1716940 13f79535-47bb-0310-9956-ffa450edef68
* Follow up to r1715880: revert abusive ap_casecmpstr[n]() usages.Yann Ylavic2015-11-242-2/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1716151 13f79535-47bb-0310-9956-ffa450edef68
* More ap_casecmpstr[n]() usages (follow up to r1715876).Yann Ylavic2015-11-236-32/+32
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1715880 13f79535-47bb-0310-9956-ffa450edef68
* Remove some useless 'return' statements.Christophe Jaillet2015-11-211-3/+6
| | | | | | Add a blank line between functions. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1715582 13f79535-47bb-0310-9956-ffa450edef68
* Constify + save a few bytes in conf poolChristophe Jaillet2015-10-301-2/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1711553 13f79535-47bb-0310-9956-ffa450edef68
* Remove code related to 'AuthDigestEnableQueryStringHack'Christophe Jaillet2015-09-161-26/+0
| | | | | | This has been undocumented for about 3 years now (see r1415960) git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1703305 13f79535-47bb-0310-9956-ffa450edef68
* s/the the/the/gRich Bowen2015-07-092-3/+3
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1690120 13f79535-47bb-0310-9956-ffa450edef68
* mod_authz_dbd: Avoid a crash when lacking correct DB access permissions. PR ↵Yann Ylavic2015-07-011-0/+13
| | | | | | | | | 57868. Submitted by: Jose Kahan <jose w3.org> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1688660 13f79535-47bb-0310-9956-ffa450edef68
* * mod_auth_digest: Use anonymous shm by default, fall back on name-based.Jan Kaluža2015-06-101-3/+12
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1684636 13f79535-47bb-0310-9956-ffa450edef68
* Save a few bytes in conf poolChristophe Jaillet2015-06-061-2/+2
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1683881 13f79535-47bb-0310-9956-ffa450edef68
* Save a few bytes in conf poolChristophe Jaillet2015-05-261-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1681685 13f79535-47bb-0310-9956-ffa450edef68
* Save a few bytes in conf pool and axe a function that duplicates ↵Christophe Jaillet2015-05-241-12/+2
| | | | | | 'ap_set_string_slot' git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1681440 13f79535-47bb-0310-9956-ffa450edef68
* mod_authn_dbd, mod_authz_dbd, mod_session_dbd, mod_rewrite: Fix lifetimeYann Ylavic2015-05-131-4/+6
| | | | | | | | | | | of DB lookup entries independently of the selected DB engine. PR 46421. Suggested by: Michel Stam <michel reverze net> Proposed by: Steven whitson <steven.whitson gmail com> Reviewed/Extended/Committed by: ylavic git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1679181 13f79535-47bb-0310-9956-ffa450edef68
* Add missing APLOGNOs by runningRainer Jung2015-03-311-2/+2
| | | | | | | docs/log-message-tags/update-log-msg-tags. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1670431 13f79535-47bb-0310-9956-ffa450edef68
* Correct MS-DOS check-in crap on text filesWilliam A. Rowe Jr2015-03-271-119/+119
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1669682 13f79535-47bb-0310-9956-ffa450edef68
* * mod_access_compat, mod_authz_host: Handle '#' character.Jan Kaluža2015-03-192-1/+17
| | | | | | | | | | For mod_access_compat, disable '#' in hostname completely. For mod_authz_host, treat '#' as a comment and ignore everything after that. This allows better handling of admin errors like 'Require host localhost# Add example.com later'. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1667676 13f79535-47bb-0310-9956-ffa450edef68
* * mod_authn_dbd: apr_pstrdup dbd_password and dbd_hash to fix use-after-freeJan Kaluža2015-03-031-2/+4
| | | | | | | bug with postgresql git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1663647 13f79535-47bb-0310-9956-ffa450edef68
* mod_authn_core: Add expression support to AuthName and AuthType.Graham Leggett2015-03-011-10/+51
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1663123 13f79535-47bb-0310-9956-ffa450edef68
* Fix a precedence issue.Christophe Jaillet2015-02-091-2/+11
| | | | | | | | The logic is unchanged but 'ret' does not have the expected value. So the logged error message may be incorrect. + add some empty lines between functions git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1658567 13f79535-47bb-0310-9956-ffa450edef68
* Fix cut and paste typo in error message + remove empty lines to be consistentChristophe Jaillet2015-02-021-5/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1656549 13f79535-47bb-0310-9956-ffa450edef68
* as in r1517366, drop the severity in authz_groupfile when a requireEric Covener2015-01-231-1/+1
| | | | | | | | | | didn't match but no real error was encountered. This individual 'require group' may not really dictate who gets in. PR55523 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1654184 13f79535-47bb-0310-9956-ffa450edef68
* Silence compiler warnings:Rainer Jung2015-01-181-4/+5
| | | | | | | | | | | - modules/aaa/mod_authnz_fcgi.c:705: warning: 'orspbuflen' may be used uninitialized in this function - modules/aaa/mod_authnz_fcgi.c:1235: warning: comparison is always false due to limited range of data type git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1652829 13f79535-47bb-0310-9956-ffa450edef68
* mod_authnz_fcgi: we don't need to add the trailing '\0' to parse response ↵Yann Ylavic2014-11-181-4/+3
| | | | | | headers since r1640036. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1640345 13f79535-47bb-0310-9956-ffa450edef68
* mod_proxy_fcgi, mod_authnz_fcgi: stop reading the response and issue an errorYann Ylavic2014-11-161-0/+4
| | | | | | | when parsing or forwarding the response fails. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1640040 13f79535-47bb-0310-9956-ffa450edef68
* mod_proxy_fcgi: SECURITY: CVE-2014-3583 (cve.mitre.org)Yann Ylavic2014-11-161-5/+5
| | | | | | | | | | | | Fix a potential crash with response headers' size above 8K. The code changes to mod_authnz_fcgi keep the handle_headers() function in sync between the two modules. mod_authnz_fcgi does not have this issue because it allocated a separate byte for terminating '\0'. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1640036 13f79535-47bb-0310-9956-ffa450edef68
* Revert r1638818, r1639812, r1639717 and r1639814 for new staging.Yann Ylavic2014-11-161-16/+6
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1640034 13f79535-47bb-0310-9956-ffa450edef68
* mod_authnz_fcgi: follow up to r1639717.Yann Ylavic2014-11-151-4/+1
| | | | | | Let ap_scan_script_header*() validate the headers. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1639814 13f79535-47bb-0310-9956-ffa450edef68
* mod_authnz_fcgi: Fix a potential crash with response headers' size above 8K.Yann Ylavic2014-11-141-7/+20
| | | | | | | (similar to r1638818 for mod_proxy_fcgi). git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1639717 13f79535-47bb-0310-9956-ffa450edef68
* mod_auth_basic: Fix comment mentioning 403 instead of 401.Jan Kaluža2014-11-111-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1638072 13f79535-47bb-0310-9956-ffa450edef68
* Resolve rashes with LDAP authz and non-LDAP authn since r1608202.Eric Covener2014-11-101-5/+21
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1637990 13f79535-47bb-0310-9956-ffa450edef68
* More styleChristophe Jaillet2014-10-041-4/+5
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1629441 13f79535-47bb-0310-9956-ffa450edef68
* Style (mostly indent)Christophe Jaillet2014-10-041-67/+71
| | | | | | remove a useless local variable initialization git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1629440 13f79535-47bb-0310-9956-ffa450edef68
* PR56870: authzprovideralias-defined authz provier can't be used in a virtualhostEric Covener2014-08-191-1/+8
| | | | | | | | apply the same workaround from mod_authn_core r1554995 so r->server has our hash. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1618851 13f79535-47bb-0310-9956-ffa450edef68
* Add missing APLOGNO.Christophe Jaillet2014-07-201-3/+7
| | | | | | Split lines longer than 80. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1611980 13f79535-47bb-0310-9956-ffa450edef68
* Add missing APLOGNO.Christophe Jaillet2014-07-202-6/+6
| | | | | | Refactor to keep APLOGNO on the same line as ap_log_error, when applicable. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1611978 13f79535-47bb-0310-9956-ffa450edef68
* Silence compiler warning:Rainer Jung2014-07-181-1/+1
| | | | | | | | | | mod_authnz_fcgi.c:580:44: warning: 'orspbuflen' may be used uninitialized in this function. Not true but annoying. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1611600 13f79535-47bb-0310-9956-ffa450edef68
* Consolidate common code that got duplicated by 2.3.x authz refactoring.Eric Covener2014-07-061-218/+149
| | | | | | | | | | | | | Arrange for backend LDAP connections to be returned to the pool by a fixup hook rather than staying locked until the end of (a potentially slow) request. Add a little more trace4 to the authnz_ldap side of LDAP connection obtain/release. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1608202 13f79535-47bb-0310-9956-ffa450edef68
* Use unsigned bit flags (otherwise the non-zero value to be used is -1).Yann Ylavic2014-06-191-3/+3
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1603863 13f79535-47bb-0310-9956-ffa450edef68
* Fix duplicate APLOGNOChristophe Jaillet2014-05-201-1/+1
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1596108 13f79535-47bb-0310-9956-ffa450edef68
* mod_authnz_ldap: Fail explicitly when the filter is too long. RemoveGraham Leggett2014-04-291-40/+74
| | | | | | | unnecessary apr_pstrdup() and strlen(). git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1591012 13f79535-47bb-0310-9956-ffa450edef68
generated by cgit v1.2.3 (git 2.39.1) at 2025-01-19 12:42:55 +0100