From: Eric Covener <covener@apache.org>
Date: Mon, 14 Sep 2009 00:33:22 +0000 (+0000)
Subject: propose a 2.2.x-unique patch for PR45946.
X-Git-Tag: 2.2.14~62
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=a2f8b38dcc6016eb142b6b540f7e2d1a5456dcbd;p=thirdparty%2Fapache%2Fhttpd.git

propose a 2.2.x-unique patch for PR45946.

We jump right into doing LDAP lookups before we know if we're configured
for authorization.  Crawl through the requirements early and bail out when
no LDAP authz will be required.



git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@814450 13f79535-47bb-0310-9956-ffa450edef68
---

diff --git a/STATUS b/STATUS
index 99f589463b1..c9e3f5c94b1 100644
--- a/STATUS
+++ b/STATUS
@@ -151,7 +151,17 @@ PATCHES PROPOSED TO BACKPORT FROM TRUNK:
    PR 40948
    Trunk Patch: http://svn.apache.org/viewvc?rev=814441&view=rev
    2.2.x patch: Trunk works. 
-   +1 covener
+   +1: covener
+
+ * mod_ldap: Pre-scan the requirements array before doing any LDAP lookups,
+   for cases where an LDAP URL is configured but non-LDAP authn/authz is in 
+   effect. This stops us from trying to resolve file-based userids to a DN
+   when the AuthLDAPURL has been defined at a very high level.
+   PR 45946
+   Trunk patch: n/a due to authz refactoring (no provider called without require-ments)
+   2.2.x version of patch: /tmp/httpd-2.2.x-authnz_ldap-skipdnloookup.diff
+   +1: covener
+
    
 PATCHES/ISSUES THAT ARE STALLED