[users@httpd] Error compile apache httpd-2.4.33

2018-04-09 Thread Rodrigo Cunha 
Dears, i try installing apache httpd-2.4.33 in debian8 but not work.

My httpd source code, in configure script, request the modules apr. I
installing this module and a try run this apache but not work, this apache
request other module: apr-util;

when i try install this module, not work and output this:

/home/rcunha/apr-util-1.6.1/build/rules.mk:206: recipe for target
'xml/apr_xml.lo' failed
make[1]: *** [xml/apr_xml.lo] Error 1
make[1]: Leaving directory '/home/rcunha/apr-util-1.6.1'
/home/rcunha/apr-util-1.6.1/build/rules.mk:118: recipe for target
'all-recursive' failed
make: *** [all-recursive] Error 1

I search fix for this problem in google but not find solution for this
problem.


-- 
Atenciosamente,
Rodrigo da Silva Cunha
São Gonçalo, RJ - Brasil



Livre
de vírus. www.avast.com
.
<#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2>

RE: [users@httpd] "Require valid-user" with multiple auth providers

2018-04-09 Thread David Horton 
So, I think I've got this working.  The following seems to do the trick.

The bit that had me stumped for a while was that the environment variable 
doesn't seem to get populated unless it is explicitly in the AuthLDAPUrl.  Even 
though uid is the default attribute for searching it doesn't get added to the 
environment unless explicitly specified.  That wasn't clear to me from the 
docs.  Once I added that it started to work as expected.



AuthBasicProvider file
AuthUserFile 
Require valid-user
Require not env AUTHENTICATE_UID


AuthBasicProvider ldap
AuthLDAPUrl "?uid" STARTTLS
AuthLDAPBindDN ""
AuthLDAPBindPassword 
Require ldap-group 



Thanks for pointing me in this direction.

David

-Original Message-
From: dave_horton2...@hotmail.com 
Sent: Sunday, 8 April 2018 3:26 PM
To: 'users@httpd.apache.org'
Subject: RE: [users@httpd] "Require valid-user" with multiple auth providers

Ok, thanks for confirming it's working as expected.
I'll give your suggestion a go and report back here.


-Original Message-
From: Eric Covener [mailto:cove...@gmail.com]
Sent: Sunday, 8 April 2018 12:27 AM
To: users@httpd.apache.org
Subject: Re: [users@httpd] "Require valid-user" with multiple auth providers

On Sat, Apr 7, 2018 at 9:11 AM, David Horton  
wrote:
> I want to authenticate/authorize primarily via LDAP and require a specific 
> group membership if authenticating this way.
> However, if LDAP is not available, use the file provider to authenticate.  If 
> that's the case, any user authenticated via the file provider should be 
> allowed.
>
> Current config is as follows.  The problem is that the valid-user gets 
> applied to ldap users so the group check is bypassed.
>
> 
> 
> AuthBasicProvider file
> AuthUserFile 
> Require valid-user
> 
> 
> AuthBasicProvider ldap
> AuthLDAPUrl "" STARTTLS
> AuthLDAPBindDN ""
> AuthLDAPBindPassword 
> Require ldap-group 
> 
> 
>
> Sanitised debug log extract with the user removed from the LDAP group below.
>
> mod_authnz_ldap.c(516): ... AH01691: auth_ldap authenticate: using URL 
> ldap://, referer: 
> mod_authnz_ldap.c(613): ... AH01697: auth_ldap authenticate: accepting 
> , referer: 
> mod_authz_core.c(809): ... AH01626: authorization result of Require 
> all denied: denied, referer: 
> mod_authz_core.c(809): ... AH01626: authorization result of Require 
> valid-user : granted, referer: 
> mod_authz_core.c(809): ... AH01626: authorization result of
> : granted, referer: 
> mod_authz_core.c(809): ... AH01626: authorization result of
> : granted, referer: 
>
> I can replace valid-user with the set of users in the file, or use group file 
> and put them all in a group but is there a way of getting valid-user to only 
> apply to the file authentication provider?  When I found that the provider 
> could be specified inside the RequireXYZ tags I expected the config above to 
> do the trick but it seems not.
>
> Am I missing something obvious or is it simply not intended to work this way?

It is not intended to work this way.  But there is hope since LDAP authn leaves 
a paper trail.

You may be able to detect if LDAP has done the authentication by reading the 
AUTHENTICATE_ variables described by mod_authnz_ldap in a "Require expr" or 
"Require [not] env" wrapped in RequireAll to implement your two cases.

[users@httpd] Need Help in AB load testing with random query params.

2018-04-09 Thread Absonworld . 
 Hi ,How to pass random inputs from a input file to apache benchmark (abs)
for load testing a URL :

I want to pass random inputs for load testing my search URL . Search texts
have to be read from an Input file and appended in the URL and send for the
AB load testing .

Eg. a) Input file : text1 text2 text3 b) URL :-
{{BaseURL}}/apps/{{ApplId}}/courses/search?query={{random
text from input file }}

I would like to hit this search URL with different/random texts present in
the input file . Currently i am trying the below command which just takes
one static URL :-

abs -n 100 -c 100 https://ib3rf43def /courses/search?query=course  >
../../abTestResult.txt

Thanks for the help in advance .!


-- 
ABHISHEK KUMAR

Re: [users@httpd] facing issue with building apache for latest version 2.4.33

2018-04-09 Thread Rainer Jung 

Am 09.04.2018 um 08:28 schrieb Rathore, Rajendra:

Hi Rainer,

Thanks for your quick response, below fix work fine with Windows machine, I had 
one question in next release fix will come out of the box or we need to again 
add that property, Please confirm?

Thanks and Regards,
Rajendra Rathore
9922701491


I have added the detailed info to your ticket 
https://bz.apache.org/bugzilla/show_bug.cgi?id=62266, but in short 
"yes", all releases of 2.4.x or higher starting with the next one will 
include this fix.


For all lurkers here: the change only fixes cmake builds of mod_ssl. We 
are still lacking a cmake build of the new mod_md.


Thanks for testing and giving feedback.

Regards,

Rainer


-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

RE: [users@httpd] facing issue with building apache for latest version 2.4.33

2018-04-09 Thread Rathore, Rajendra 
Hi Rainer,

Thanks for your quick response, below fix work fine with Windows machine, I had 
one question in next release fix will come out of the box or we need to again 
add that property, Please confirm?

Thanks and Regards,
Rajendra Rathore
9922701491

-Original Message-
From: Rainer Jung [mailto:rainer.j...@kippdata.de] 
Sent: 07 April 2018 12:12 AM
To: users@httpd.apache.org
Subject: Re: [users@httpd] facing issue with building apache for latest version 
2.4.33

Hello,

Am 06.04.2018 um 08:41 schrieb Rathore, Rajendra:
> Hi Team,
> 
> I am facing the issue while building apache on Window machine with the 
> help of apache source code and got below error
> 
> [ 92%] Building C object
> CMakeFiles/mod_ssl.dir/modules/ssl/ssl_engine_init.c.obj
> 
> ssl_engine_init.c
> 
> C:\apacheBuild\apache2.4\build\httpd-2.4.33\modules\ssl\ssl_engine_ini
> t.c(33)
> : fatal error C1083: Cannot open include file: 'mod_md.h': No such 
> file or directory
> 
> NMAKE : fatal error U1077: 'c:\PROGRA~2\MICROS~2.0\VC\bin\amd64\cl.exe' 
> : return code '0x2'
> 
> Stop.
> 
> I did some investigation and found that with new version of apache we 
> added a new module called *mod_md* which is experimental basis, I 
> don’t know why experimental module added as a dependency and it will 
> cause a build failure,
> 
> Can you please help me out to fix above issue?

for people who are not aware: the OP opened th eissue
https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fbz.apache.org%2Fbugzilla%2Fshow_bug.cgi%3Fid%3D62266=02%7C01%7Crarathore%40ptc.com%7C46edf326c2994a8a508108d59bee1d62%7Cb9921086ff774d0d828acb3381f678e2%7C0%7C0%7C636586369370542341=HLw9kIKbwTUf2PkVPUBaL7mIsPGAuVVTODZuu8Fpnsw%3D=0
 and I commented there, that this seems to be a cmake specific problem and 
proposed to test the following fix:

Index: CMakeLists.txt
===
--- CMakeLists.txt  (revision 1828523)
+++ CMakeLists.txt  (working copy)
@@ -649,6 +649,7 @@
${CMAKE_CURRENT_SOURCE_DIR}/modules/dav/main
${CMAKE_CURRENT_SOURCE_DIR}/modules/filters
${CMAKE_CURRENT_SOURCE_DIR}/modules/generators
+  ${CMAKE_CURRENT_SOURCE_DIR}/modules/md
${CMAKE_CURRENT_SOURCE_DIR}/modules/proxy
${CMAKE_CURRENT_SOURCE_DIR}/modules/session
${CMAKE_CURRENT_SOURCE_DIR}/modules/ssl

This should fix building mod_ssl, ie. the OP's original question.

To build mod_md itself is not yet supported by our cmake files.

Regards,

Rainer


-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org