From: Bradley Nicholes Date: Fri, 30 Dec 2005 00:07:29 +0000 (+0000) Subject: If there aren't any providers configured, then just decline allowing other hook based... X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=a2331f33bc927c70b76de89d9d8854f28b252769;p=thirdparty%2Fapache%2Fhttpd.git If there aren't any providers configured, then just decline allowing other hook based authorization modules to have a crack at it git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/authz-dev@359935 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/modules/aaa/mod_authz_core.c b/modules/aaa/mod_authz_core.c index 529c70f912e..d22b1622d67 100644 --- a/modules/aaa/mod_authz_core.c +++ b/modules/aaa/mod_authz_core.c @@ -69,8 +69,9 @@ X- Change the status code to AUTHZ_DENIED, AUTHZ_GRANTED - Determine if setting the AUTHZ_PROVIDER_NAME_NOTE note is even necessary. This was used in authn to support authn_alias. Is there a need for an authz_alias? -- Remove the Satisfy directive and replace it with the +X- Remove the Satisfy directive functionality and replace it with the , directives +- Remove the Satisfy directive X- Implement the block directives to handle the 'and' and 'or' logic for authorization. X- Remove the AuthzXXXAuthoritative directives from all of @@ -79,9 +80,9 @@ X- Implement the Reject directive that will deny authorization if the argument is true X- Fold the Reject directive into the logic -- Reimplement the host based authorization 'allow', 'deny' +X- Reimplement the host based authorization 'allow', 'deny' and 'order' as authz providers - +X- Remove the 'allow', 'deny' and 'order' directives */ typedef struct provider_alias_rec { @@ -589,7 +590,7 @@ static int authorize_user(request_rec *r) if (!conf->providers) { ap_log_rerror(APLOG_MARK, APLOG_ERR, 0, r, "no authorization providers configured"); - return HTTP_UNAUTHORIZED; + return DECLINED; } current_provider = conf->providers;