From: Rich Bowen Date: Sat, 2 May 2026 20:43:13 +0000 (+0000) Subject: Bug 64458: Strengthen no-quotes warnings for Require ldap-group and ldap-dn; explain... X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=550fd9d1a0ce17118fa8ecf959078e0a85c28818;p=thirdparty%2Fapache%2Fhttpd.git Bug 64458: Strengthen no-quotes warnings for Require ldap-group and ldap-dn; explain inconsistency with ldap-user git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1933732 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/docs/manual/mod/mod_authnz_ldap.xml b/docs/manual/mod/mod_authnz_ldap.xml index 65a56bdc94..0de645ff3a 100644 --- a/docs/manual/mod/mod_authnz_ldap.xml +++ b/docs/manual/mod/mod_authnz_ldap.xml @@ -379,8 +379,13 @@ Require ldap-user bjenson fuser jmanager

This directive specifies an LDAP group whose members are allowed access. It takes the distinguished name of the LDAP - group. Note: Do not surround the group name with quotes. - For example, assume that the following entry existed in + group.

+ + Do not surround the group name with quotes. + Unlike Require ldap-user, the ldap-group + provider does not support quoted values. + +

For example, assume that the following entry existed in the LDAP directory:

 dn: cn=Administrators, o=Example
@@ -453,8 +458,11 @@ AuthLDAPMaxSubGroupDepth 1
     that must match for access to be granted. If the distinguished
     name that was retrieved from the directory server matches the
     distinguished name in the Require ldap-dn, then
-    authorization is granted. Note: do not surround the distinguished
-    name with quotes.

+    authorization is granted.

+
+    Do not surround the distinguished name with
+    quotes.  Unlike Require ldap-user, the
+    ldap-dn provider does not support quoted values.
 
     
The following directive would grant access to a specific
     DN: