If you did, you hacked it yourself.
While I have a modification that will allow this, I haven't posted it to
CPAN yet (it will be at least another week before I do since I'm on
the road again)
It's a simple change though if you want to do it yourself. In
Apache::AuthNetLDAP look for the line that says:
unless($mesg->count())
replace the return ...
with return DECLINED
Then the PerlAuthenHandler MUST come before the AuthUserfile
because AuthUserFile does not return a declined response.
Mark
On 6 Apr 01, at 17:43, Eamon Daly wrote:
> Am I completely off my rocker or did I not once have a Location
> protected so that I could auth against a htpasswd file if the LDAP
> auth failed? I can't find a single trace of my old httpd.conf, but I
> /swear/ I had it working at some point. Has anyone else done this?
>
> <Location />
> AuthName "Internal"
> AuthType Basic
> AuthUserFile conf/htpasswd.list
>
> PerlAuthenHandler Apache::AuthNetLDAP
> PerlSetVar LDAPServer xxx.xxx.xxx.xxx
> PerlSetVar LDAPPort 389
> PerlSetVar BaseDN "ou=xxxxx,ou=xxxxx,o=xxxxx"
> PerlSetVar UIDAttr cn
>
> order deny,allow
> deny from all
> allow from 10.
> allow from 127.0.0.1
> require user guest_pass
> require valid-user
> satisfy any
> </Location>
>
> That results in:
>
> [Fri Apr 6 17:24:51 2001] [error] access to /internal/ failed for
> 216.17.138.248, reason: user guest_pass: user entry not found for
> filter: cn=xxxxx
>
> and a 401 error. Am I out of my mind?
>
> ______________________________
> Eamon Daly
> FastWeb, Inc.
> 847 568 6410
>
>
>
>
>
Mark Wilcox
ma...@mj...
Got LDAP?
|
