Re: [users@httpd] mod_auth_ldap mod_auth_mysql on OS-X

Fri, 03 Feb 2006 09:58:28 -0800 

Hi!
Moving the mod_auth_mysql module before the mod_auth_ldap does give mysql priority, however the reverse problem happens. That is, when a user exists in both databases with different passwords, now mod_auth_mysql refuses to 'decline'. 


I've systematically swapped the load order of mod_auth_mysql, 
mod_access, mod_auth, mod_ldap & mod_auth_ldap using all possible 
combinations, restarting the server and reloading the browser [flushing 
the cache] each time with the result being that one module always 
refuses to decline when a user exists in both databases.


-bill

[EMAIL PROTECTED] wrote:


Hi Wiliam. I've been reading up on modules and 
authentication.



You may need to move the LDAP module so it comes after the 
mysql_auth module, as each module is tested in reverse 
order, i.e. last loaded module is higher priority and comes 
first in the pecking order.



Accordingly, the way you have your modules listed, mysql 
will have priority over the LDAP module. mod_access having 
the lowest priority and being checked last, cause it's 
first in the LoadModule listing.


On Fri, 3 Feb 2006, William Paredes wrote:


 


To: [email protected]
From: William Paredes <[EMAIL PROTECTED]>
Subject: Re: [EMAIL PROTECTED] mod_auth_ldap mod_auth_mysql on OS-X

Greetings!

Using these modules
-------------------
LoadModule access_module modules/mod_access.so

LoadModule auth_module modules/mod_auth.so
LoadModule ldap_module modules/mod_ldap.so
LoadModule auth_ldap_module modules/mod_auth_ldap.so

LoadModule mysql_auth_module  modules/mod_auth_mysql.so

   




Arrange these modules in reverse order with the last 
mentioned module having highest checking priority, and the 
module first in the list has lowest priority, i.e. is tested 
last.


Keith

In theory, theory and practice are the same;

In practice they are not. 



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


 




---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]















    











					Reply via email to