Set authorization request variables in the ldapsearch case.

author Graham Leggett <minfrin@apache.org>

Sun, 19 Nov 2023 10:10:02 +0000 (10:10 +0000)

committer Graham Leggett <minfrin@apache.org>

Sun, 19 Nov 2023 10:10:02 +0000 (10:10 +0000)
author Graham Leggett <minfrin@apache.org>
Sun, 19 Nov 2023 10:10:02 +0000 (10:10 +0000)
committer Graham Leggett <minfrin@apache.org>
Sun, 19 Nov 2023 10:10:02 +0000 (10:10 +0000)
diff --git a/modules/aaa/mod_authnz_ldap.c b/modules/aaa/mod_authnz_ldap.c

index 6d62d9d585fce4938f7270b5fb076fdae3d3fdfd..3ae77e7786040a4cfe67793291c7b68aa5bcfadc 100644 (file)
--- a/modules/aaa/mod_authnz_ldap.c
+++ b/modules/aaa/mod_authnz_ldap.c
@@ -1412,6 +1412,8 @@ static authz_status ldapsearch_check_authorization(request_rec *r,
                                                     const void *parsed_require_args)
  {
      int result = 0;
+    authn_ldap_request_t *req =
+        (authn_ldap_request_t *)ap_get_module_config(r->request_config, &authnz_ldap_module);
      authn_ldap_config_t *sec =
          (authn_ldap_config_t *)ap_get_module_config(r->per_dir_config, &authnz_ldap_module);
  
@@ -1461,6 +1463,7 @@ static authz_status ldapsearch_check_authorization(request_rec *r,
              ap_log_rerror(APLOG_MARK, APLOG_DEBUG, 0, r, APLOGNO(02631)
                            "auth_ldap authorize: require ldap-search: "
                            "authorization successful");
+            set_request_vars(r, LDAP_AUTHZ, req->vals);
              return AUTHZ_GRANTED;
          }
          else {
author	Graham Leggett <minfrin@apache.org>
	Sun, 19 Nov 2023 10:10:02 +0000 (10:10 +0000)
committer	Graham Leggett <minfrin@apache.org>
	Sun, 19 Nov 2023 10:10:02 +0000 (10:10 +0000)