I wanted to propose a point of clarification to the documentation
surrounding the authorization phase described for mod_authnz_ldap.
This point is clarified a little further down in the file but could
stand to be more clear outside of the specific place it is mentioned.
Index: manual/mod/mod_authnz_ldap.xml
===================================================================
--- manual/mod/mod_authnz_ldap.xml (revision 499068)
+++ manual/mod/mod_authnz_ldap.xml (working copy)
@@ -226,8 +226,14 @@
<li>otherwise, deny or decline access</li>
</ul>
- <p>Other <directive module="core">Require</directive> values may also be
- used which may require loading additional authorization modules.</p>
+ <p>Other <directive module="core">Require</directive> values may also
+ be used which may require loading additional authorization modules.
+ Note that if you use a <directive module="core">Require</directive>
+ value from another authorization module, you will need to ensure that
+ <directive module="mod_authnz_ldap">AuthzLDAPAuthoritative</directive>
+ is set to <code>off</code> to allow the authorization phase to fall
+ back to the module providing the alternate
+ <directive module="core">Require</directive> value.</p>
<ul>
<li>Grant access if there is a <a href="#requser"><code>require
--
Darren Spruell
[EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
