[Bug 781036] [NEW] authnz_external module load order matters for GroupExternal and Require file-group
Richard Mitchell
781036 at bugs.launchpad.net
Wed May 11 10:23:31 UTC 2011
Public bug reported:
Binary package hint: apache2
With this example configuration:
{{{
<VirtualHost *:443>
AddExternalAuth auth_script /bin/true
SetExternalAuthMethod auth_script pipe
AddExternalGroup group_script /bin/true
SetExternalGroupMethod group_script pipe
<Directory /foo>
AuthType Basic
AuthName Protected
AuthBasicProvider external
AuthExternal auth_script
GroupExternal group_script
GroupExternalAuthoritative On
Require file-group
Satisfy All
</DirectoryMatch>
</VirtualHost>
}}}
and modules:
{{{
alias
auth_basic
authn_file
authnz_external
authz_default
authz_groupfile
authz_host
authz_owner
authz_user
autoindex
cgid
deflate
dir
env
headers
mime
negotiation
proxy
proxy_http
reqtimeout
rewrite
setenvif
ssl
status
}}}
using standard apache2 & required modules from Lucid repositories.
Requests that require authentication will fail with the error:
{{{
[Fri May 06 18:14:59 2011] [error] [client 123.123.123.123] access to /foo/bar/baz failed, reason: require directives present and no Authoritative handler., referer:
http://example.com/qux/
}}}
Renaming '/etc/apache2/mods-enabled/authnz_external.load' to
'/etc/apache2/mods-enabled/zz-authnz_external.load' and restarting
results in a successful request.
** Affects: apache2 (Ubuntu)
Importance: Undecided
Status: New
** Tags: apache authexternal authnz external file-group groupexternal load mod module order require
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to apache2 in Ubuntu.
https://bugs.launchpad.net/bugs/781036
Title:
authnz_external module load order matters for GroupExternal and
Require file-group
More information about the Ubuntu-server-bugs
mailing list