[Slashcode-development] Slash::Apache::User on PerlAuthzhandler?

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi,

Disclaimer:
             Please forgive a slashcode novice if this discussion covers 
well trod land.

  The default install of slashcode attaches Slash::Apache::User to 
PerlAccessHandler.

  PerlAccessHandler is run before PerlAuthenHandler which is in turn 
runs before PerlAuthzHandler.

  So if using Apache external authentication the REMOTE_USER env var is 
not available at the "PerlAccessHandler" but _is_ available at the 
"PerlAuthzHandler" phase. This makes it difficult to setup accounts 
based upon the Authentication phase.

  So to gain finer control over user access would it not make sense to 
move Slash::Apache::User to the PerlAuthzHandler phase?

Yours
Faye

-- 
---------------------------------------------------------
Faye Gibbins, Computing Officer (Infrastructure Services)
GeoS KB; Linux, Unix, Security and Networks; 0131 6506426
---------------------------------------------------------