On Fri, Oct 3, 2008 at 11:11 AM, Houser, Rick <[EMAIL PROTECTED]> wrote: > I'm relatively new to module development, but I have a need to wrap a > function in a proprietary module (no source) registered via a > check_user_id hook in a proprietary module (mod_auth_saf). Basically, I > need to detect an expired password condition. I've already tried to use > the normal pre/post hook registration, but that function returns an > HTTP_UNAUTHORIZED (some internal basic auth password change feature) > instead of DECLINE, so Apache never runs my call.
If you ask Apache to run your code first, the proprietary module shouldn't be able to prevent yours from being run. You should be able to make sure that your own logic runs for the expired password case and just DECLINE for everything else. IMO an auth_checker probably shouldn't return DECLINED if it can lookup a user and specifically find they have an expired password -- could you make a case to IBM for the behavior you ultimately want? -- Eric Covener [EMAIL PROTECTED]
