AUTH_GENERAL_ERROR
} authn_status;
+typedef enum {
+ AUTHZ_DENIED,
+ AUTHZ_DECLINED,
+ AUTHZ_GRANTED,
+ AUTHZ_GENERAL_ERROR
+} authz_status;
+
typedef struct {
/* Given a username and password, expected to return AUTH_GRANTED
* if we can validate this user/password combination.
/* Given a request_rec, expected to return AUTH_GRANTED
* if we can authorize user access.
*/
- authn_status (*check_authorization)(request_rec *r, apr_int64_t method_mask, const char *require_line);
+ authz_status (*check_authorization)(request_rec *r, apr_int64_t method_mask, const char *require_line);
} authz_provider;
/* A linked-list of authn providers. */
{
authz_host_dir_conf *conf = ap_get_module_config(r->per_dir_config,
&authz_host_module);
- authn_status auth_result;
+ authz_status auth_result;
authz_provider_list *current_provider;
current_provider = conf->providers;
if (!provider || !provider->check_authorization) {
ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r,
"No Authz provider configured");
- auth_result = AUTH_GENERAL_ERROR;
+ auth_result = AUTHZ_GENERAL_ERROR;
break;
}
apr_table_setn(r->notes, AUTHZ_PROVIDER_NAME_NOTE, AUTHZ_DEFAULT_PROVIDER);
apr_table_unset(r->notes, AUTHZ_PROVIDER_NAME_NOTE);
/* Something occured. Stop checking. */
- if (auth_result != AUTH_DENIED) {
+ if (auth_result != AUTHZ_DENIED) {
break;
}
current_provider = current_provider->next;
} while (current_provider);
- if (auth_result != AUTH_GRANTED) {
+ if (auth_result != AUTHZ_GRANTED) {
int return_code;
/* XXX need to deal with DECLINED vs DENIED. DECLINED may not even
according to the order and the Authz_xxx_Authoritative directives.
*/
switch (auth_result) {
- case AUTH_DENIED:
+ case AUTHZ_DENIED:
ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r,
"user %s: authorization failure for \"%s\": ",
r->user, r->uri);
return_code = HTTP_UNAUTHORIZED;
break;
- case AUTH_GENERAL_ERROR:
+ case AUTHZ_GENERAL_ERROR:
default:
/* We'll assume that the module has already said what its error
* was in the logs.
* provider.
*/
if (!current_provider) {
- provider = ap_lookup_provider(AUTHZ_PROVIDER_GROUP,
+/* provider = ap_lookup_provider(AUTHZ_PROVIDER_GROUP,
AUTHZ_DEFAULT_PROVIDER, "0");
if (!provider || !provider->check_authorization) {
ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r,
"No Authz providers configured. Assmuming no authorization required.");
+*/
req_authz = 0;
break;
- }
+/* }*/
}
else {
provider = current_provider->provider;
{
STANDARD20_MODULE_STUFF,
create_authz_host_dir_config, /* dir config creater */
- merge_authz_host_dir_config, /* dir merger --- default is to override */
+ NULL, /* dir merger --- default is to override */
NULL, /* server config */
NULL, /* merge server config */
authz_host_cmds,
}
#endif
-static authn_status user_check_authorization(request_rec *r, apr_int64_t method_mask, const char *require_line)
+static authz_status user_check_authorization(request_rec *r, apr_int64_t method_mask, const char *require_line)
{
char *user = r->user;
int m = r->method_number;
const char *t, *w;
if (!(method_mask & (AP_METHOD_BIT << m))) {
- return DECLINED;
+ return AUTHZ_DECLINED;
}
t = require_line;
while (t[0]) {
w = ap_getword_conf(r->pool, &t);
if (!strcmp(user, w)) {
- return OK;
+ return AUTHZ_GRANTED;
}
}
}
r->uri, user);
ap_note_auth_failure(r);
- return HTTP_UNAUTHORIZED;
+ return AUTHZ_GENERAL_ERROR;
}
-static authn_status validuser_check_authorization(request_rec *r, apr_int64_t method_mask, const char *require_line)
+static authz_status validuser_check_authorization(request_rec *r, apr_int64_t method_mask, const char *require_line)
{
int m = r->method_number;
if (!(method_mask & (AP_METHOD_BIT << m))) {
- return DECLINED;
+ return AUTHZ_DECLINED;
}
- return OK;
+ return AUTHZ_GRANTED;
}
static const authz_provider authz_user_provider =
projects / thirdparty / apache / httpd.git / commitdiff
