https://bz.apache.org/bugzilla/show_bug.cgi?id=58246
Bug ID: 58246
Summary: dbd-group behaving differently to documentatino
Product: Apache httpd-2
Version: 2.4.6
Hardware: PC
OS: Linux
Status: NEW
Severity: normal
Priority: P2
Component: mod_authz_dbd
Assignee: [email protected]
Reporter: [email protected]
According to this link
http://httpd.apache.org/docs/trunk/mod/mod_authz_dbd.html
AuthzDBDQuery Directive
When used with a Require dbd-group directive, it specifies a query to look up
groups for the current user. This is the standard functionality of other
authorization modules such as mod_authz_groupfile and mod_authz_dbm. The first
column value of each row returned by the query statement should be a string
containing a group name. Zero, one, or more rows may be returned.
I found that if the query returned more than one row, the authorization failed
with "Sun Aug 16 14:09:54.566429 2015] [authz_core:error] [pid 27034] [client
81.174.4.175:52849] AH01631: user [email protected]: authorization failure for
"/awstats/awstats.pl": "
If the query contains a single row, then it is successful. The returned value
in the single row may contain more than one group name separated by white
space.
Either the documentation should be changed to explain the functionality or the
code should be changed to handle multiple rows.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
