DO NOT REPLY TO THIS EMAIL, BUT PLEASE POST YOUR BUGĀ· RELATED COMMENTS THROUGH THE WEB INTERFACE AVAILABLE AT <http://issues.apache.org/bugzilla/show_bug.cgi?id=43281>. ANY REPLY MADE TO THIS MESSAGE WILL NOT BE COLLECTED ANDĀ· INSERTED IN THE BUG DATABASE.
http://issues.apache.org/bugzilla/show_bug.cgi?id=43281 Summary: authnz_ldap and require valid-user returns 401 Product: Apache httpd-2 Version: 2.2.4 Platform: Other OS/Version: other Status: NEW Severity: normal Priority: P2 Component: mod_authz_ldap AssignedTo: [email protected] ReportedBy: [EMAIL PROTECTED] When doing LDAP authentication with non-LDAP authorization, mod_authnz_ldap will return 401 during authorization even when no LDAP authorization is configured. Other authz modules, even when configured as authoritative, will not return HTTP_UNAUTHORIZED if they don't see any of their specific flavor of authz directives in the config (they essentially treat this as a hint that they aren't authoritative in that context without requiring the explicit authoritative flag) This prevents "require valid-user" to work with LDAP authentication without setting 'AuthzLDAPAuthoritative' in the same context -- Configure bugmail: http://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
