to port
their subclasses to mod_perl2. If I do not get complaints about the
AuthCookie API changes that I have made, I will upload this release to
CPAN.
You can get AuthCookie 3.05pre1 from:
https://sourceforge.net/project/showfiles.php?group_id=12701
Regards,
Michael Schout
GKG.NET, INC
On Tue, 10 Jun 2003, Jay Strauss wrote:
I'm running into a problem during the make test while installing the current
version of Apache::AuthCookie. I'm not sure where to go. I looked at tests
10 and 15:
Hrm. You are supposed to get ok for all of the tests.
If I had to guess from this I
Geoffrey Young wrote:
interesting. the last time I tried was with bleedperl before 5.8 was
released - I know it worked then because I was writing a patch for
mod_perl core based on it. this thread has most of the dialogue:
Hrm. Well, not sure how the :method attribute is implemented, but
Luis Fagundes wrote:
I think you can only do this in Apache 2.0. In Apache 1.3 you can chain
perl modules with OutputChain, but you can't chain a perl module and
another apache module.
You CAN do this in 1.3 using Apache::Filter and Apache::SSI.
I replied privately to Simran pointing him to
Geoffrey Young wrote:
keep in mind that neither book mentions the use of subroutine
attributes, which is allowed in 1.3 but the only way in 2.0
sub handler : method {
...
}
I am 99% sure that Attribute handlers wont work in 1.3 because
Attribute::Handlers use CHECK{} blocks to set up the
perl Makefile.PL /dev/null works for us. We encapsulate it in a
macro (see below).
Now why didn't I think of that? :). This works nicely. We still ahve to
patch some of the individual Makefile.PL's, but that is acceptable (some
of them have exit; at the end of them for example which causes
Okay, I'll chime in on this one.
I work on a medium sized mod_perl project (approximately 50,000 lines of
perl code). This project is managed similarly to to the setups that
have been described so far. We store all of our CPAN module sources in
CVS, and currently we distribute the modules to
darren chamberlain wrote:
attached to Apache. I'd like to see, in addition to the Apache stuff, a
generic GeoIP library that can be used from outside Apache, like in
log-eating scripts.
You mean like this?
http://search.cpan.org/author/TJMATHER/Geo-IP-0.26/lib/Geo/IP.pm
:)
Mike
darren chamberlain wrote:
One thing I'd add if you do decide to use the Geo::IP module, it does
not behave as documented if it does not find a match. The docs say it
returns undef, but in fact it returns the string --. The attached
patch fixes that problem. I've sent the patch to the GeoIP
Christian Gilmore wrote:
4. I cannot modify the cookie and should not send additional cookies.
[snip]
about 4. Can I use an unmodified AuthCookie to ensure that whatever format
the inbound cookie is in is sufficient and will not need to be modified or
supplemented? I believe the answer is
George Valpak wrote:
Is it possible to protect an entire site, from DocumentRoot, using AuthCookie?
Yes. I've never done this myself personally, but people have reported
success doing this. The trick is to configure apache so that your LOGIN
handler is not inside the authentication realm.
Christian Gilmore wrote:
1. Read data from existing cookie.
1a. Redirect if cookie is non-existent.
2. Accept or reject cookie.
2a. If rejected, redirect.
2b. If accepted, populate environment and return.
Sounds to me like you really dont need AuthCookie at all. You could
just as
Any comments?
AuthCookie has not yet been ported to mod_perl 2.0.
Mike
Hi everyone.
I've revisited using Attribute::Handlers work under mod perl again, and I am
still unsuccesful.
Looking at Attribute::Handlers, it appears that Attribute::Handlers relies
on CHECK blocks to do its work. I verified this by uncommenting one of the
debugging warnings in Handlers.pm
Perrin Harkins wrote:
We've actually discussed this on the list. It has to do with closures.
Matt gave a presentation about exception handling which covers it and
shows a workaround. You can see it here:
http://axkit.org/docs/presentations/tpc2001/
Sorry to chime in a little late on
Brian Reichert wrote:
Location /formscript/login
PerlSetVar FormScriptSecure 1
AuthType Apache::AuthTicket
...
/Location
But, in each case, my login program is server in the clear. What am I
missing?
THe authnameSecure setting only affects the cookie. If you want
Jian Zhen wrote:
Hi all,
I have been scratching my head for a day now trying to figure
out how to make AuthCookie work.
I note that you have
PerlSetVar WhatEverSecure 1
in your config. If that is the case, make sure you are accessing
the from using HTTPS, not HTTP. This has been a
Jim Helm wrote:
Feel free to do whatever you want with the code... Comment/criticism
welcome - especially on the init method. I'll post to CPAN if anyone
thinks it's worth it. I'd gladly accept integrating this directly into
AuthTicket if the maintainer wishes (Michael Schout?). I'm
On Mon, 22 Apr 2002, Fran Fabrizio wrote:
It seems that even if AuthCookie returns a FORBIDDEN with a custom_error
page set, the $r-notes() don't propagate. Does apache consider the
display of the custom_response page to be a completely new request?
Its a subrequest, so the notes shold be
On Wed, 17 Apr 2002, Peter Bi wrote:
Fran:
You may need to 1) add a few lines of code in AuthCookie to make your error
code aware to other methods, and 2) have a dynamic login page that can
interpret the code. Alternatively, you may try AccessCookie I posted. :-)
The CVS version of
On 16 Apr 2002, PinkFreud wrote:
I have a rather odd problem, one which I can only assume is a bug
somewhere, due to how bizarre it is.
I am attmempting to generate virtual host configs via mod_perl, using
Perl sections in httpd.conf. Not all hosts will be using a /perl
Alias, though, so
the username. authen_cred() is only called when you submit the login
form.
Regards,
Michael Schout (AuthCookie maintainer).
I made an attempt to use Attribute::Handlers under mod perl today, and it
appears that this cant be done. What I was hoping to do was use
Attribute::Deprecated, and Attribute::Profiled in my perl handlers.That way
I could say something like:
package MyHandler;
sub whatever : Profiled { ...
On 13 Feb 2002, Salvador Ortiz Garcia wrote:
Ok, I found it. Right now all Location, Directory and Files are afected
by being upgraded at random to the Match versions.
Can you please test the following patch for perl_config.c:
You might be intersted to know that this patch also fixes
variable path=/agenda was omitted. Explorer 6.0 doesn't set cookie
without path attribute.
I think, it's a good idea to make WhatEverPath required option in
config.
Hrm. I was not aware of that. Thanks for bringing it to my attention.
I have changed AuthCookie in CVS so that Path will be
will see what we can do if
such a limitation does in fact exist :).
Regards,
Michael Schout (Apache::AuthCookie maintainer)
Tomasz Konefal wrote:
PerlSetVar FtpFuTicketSecretTable ticketsecrets:sec_version:sec_data
PerlSetVar FtpFuTicketExpires 15
PerlSetVar FtpFuTicketLogoutURI /authorized/ftpfu.cgi
PerlSetVar FtpFuTicketLoginHandler /ftpfulogin
PerlSetVar FtpFuTicketIdleTimeout 1
PerlSetVar FtpFuPath /
On Fri, Jun 02, 2000 at 09:26:45AM +1000, Adam Cassar wrote:
I was wondering how people are clearing out old Apache::Session's
No timestamp is used on the fields used by Apache::Session, so how do
we clear the old sessions?
I am not talking about the delete() method to remove a session,
On Fri, May 26, 2000 at 03:35:51PM -0700, Jeffrey W. Baker wrote:
Greetings,
I have released Apache::Session 1.51. The addition of the Oracle backing
store took less time than expected. It is included and tested in this
release. This is the only change from 1.50.
I just took a look at
On Fri, May 26, 2000 at 12:25:39PM -0700, Jeffrey W. Baker wrote:
Yes it would be great to break the 8K (actually slightly less) limit, if
it doesn't hamper performance too much. I read the docs on the Postgres
web site, but I didn't find anything interesting about blob support.
I'm working
On Tue, Apr 25, 2000 at 11:55:26AM -0700, Doug MacEachern wrote:
On Sat, 22 Apr 2000, Michael Schout wrote:
I dont know what else I would name it. It is extremely similar to the
TicketAccess system in the eagle book, with a lot of extra features added
in.
please come up
On Thu, Apr 20, 2000 at 12:15:16PM -0400, DeWitt Clinton wrote:
The secure session has the following properties:
*) The user is able to initiate a secure session by providing proper
credentials (i.e., a username and password pair) via a login process.
*) The user is able to terminate the
On Thu, Apr 20, 2000 at 02:16:09PM -0700, Doug MacEachern wrote:
On Tue, 18 Apr 2000, Michael J Schout wrote:
Apache-TicketAccess-0.10.tar.gz
cool, but, there's already a module named Apache::TicketAccess, listed in
the apache-modlist.html:
TicketAccess bdpOTicket based
Doh!
I just checked the development version of HTML::Embperl, and this is fixed in
there.
Gerald: Could we patch this fix in to the HTML::Embperl stable tree and get a
new stable release? I would like to avoid running the beta version of Embperl
on a production site :).
The patch in question
Hi!
Here is a job posting from the company I work for. If anyone here has any
general questions, you can just email me, otherwise, you can apply by
sending your information in to Global Knowledge Group as described at the end
of the posting.
Mike
-
We are looking for several mod_perl
Ken Williams wrote:
Changes:
- Added 'handle' parameter to filter_input(), which lets callers open the
input filehandle themselves.
[[EMAIL PROTECTED] (Vegard Vesterheim)]
Hi Ken.
I've figured out that using this, I can *cheat* and get Apache::Filter
to
work with my handler
Okay.
I solved my problems with CGI::Carp complaining and httpd not starting.
I had neglected to install a few extra modules on the second machine that I
needed, and startup.pl was bailing out. Consequently, CGI::Carp had been
pulled in, so that tries to run fatalsToBrowser.. But since its
37 matches
Mail list logo