Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Addressing apxs:Error: Sorry, cannot determine bootstrap symbol name with ↵ | Helmut K. C. Tessarek | 2023-05-25 | 1 | -8/+3 |
| | | | | apxs -i | ||||
* | Tagging 1.2.3 release.mod_authnz_pam-1.2.3 | Jan Pazdziora | 2022-01-23 | 1 | -1/+1 |
| | |||||
* | Catch warnings, fix the incompatible pointer type one. | Jan Pazdziora | 2022-01-23 | 1 | -1/+1 |
| | |||||
* | Change default redirect status for AuthPAMExpiredRedirect to 303 See Other, ↵ | Jan Pazdziora | 2022-01-23 | 1 | -12/+36 |
| | | | | | | | | | | make it configurable. Redirect to reset password typically goes to different system, so repeating for example POST which 307 Temporary Redirect does is not that useful; the 303 See Other will do plain GET. The redirect status can be overriden with an optional second parameter to AuthPAMExpiredRedirect. | ||||
* | Use ap_get_useragent_host instead of ap_get_remote_host | Jake Chen | 2021-03-30 | 1 | -0/+4 |
| | | | | | | | | | - according to https://www.apachelounge.com/Changelog-2.4.html, modules should be updated to inquire for ap_get_useragent_host() in place of ap_get_remote_host(). - use module magic number 20120211,56 to determine whether to use ap_get_useragent_host (according to https://github.com/apache/httpd/blob/2.4.x/include/ap_mmn.h) | ||||
* | Store password to cache only after passing all PAM checks, including account. | Jake Chen | 2020-07-08 | 1 | -5/+5 |
| | |||||
* | Tagging 1.2.0 release.mod_authnz_pam-1.2.0 | Jan Pazdziora | 2018-07-17 | 1 | -1/+1 |
| | |||||
* | Skip support for caching on 2.3.7 or older where ap_authn_cache_store did ↵ | Jan Pazdziora | 2018-07-17 | 1 | -0/+6 |
| | | | | not exist. | ||||
* | Implementation of socache caching. | schnitzi99 | 2018-07-17 | 1 | -0/+32 |
| | | | | | Copied from example code of dbd and dbm socache implementations If PAM-Authentification is successful (AUTH_GRANTED), do apache-style salted bcrypt hash and store it in socache. | ||||
* | Tagging 1.1.0 release.mod_authnz_pam-1.1.0 | Jan Pazdziora | 2016-11-22 | 1 | -1/+1 |
| | |||||
* | Fix AuthPAMExpiredRedirect %s escaping on Apache 2.2. | Jan Pazdziora | 2016-11-22 | 1 | -3/+2 |
| | |||||
* | Force and send the response redirect status, to avoid the default 401. | Jan Pazdziora | 2016-11-22 | 1 | -1/+3 |
| | |||||
* | Use info for success messages, since notice cannot be silenced for logs to ↵ | Jan Pazdziora | 2016-11-16 | 1 | -1/+1 |
| | | | | | | files. Suggested by: Phil Endecott | ||||
* | Put the name of the module to the start of the message on Apache 2.4. | Jan Pazdziora | 2016-11-16 | 1 | -4/+15 |
| | | | | | | | | | Replacing [Tue Nov 15 18:00:42.602043 2016] [:notice] [pid 27824] [client 10.11.12.13:40740] mod_authnz_pam: PAM authentication passed for user bob@EXAMPLE.COM with [Tue Nov 15 18:00:42.602043 2016] [authnz_pam:notice] [pid 27824] [client 10.11.12.13:40740] PAM authentication passed for user bob@EXAMPLE.COM Suggested by: Phil Endecott | ||||
* | Prefer ap_log_rerror for messages related to a particular request. | Jan Pazdziora | 2016-11-15 | 1 | -3/+3 |
| | | | | Suggested by: Phil Endecott | ||||
* | Only put the password to the first response (factor). | Jan Pazdziora | 2015-11-09 | 1 | -1/+5 |
| | | | | | | When modules start to support pre-auth, we would put the password+code (in case of OTP setup) to both first and second factor, leading to PAM_CRED_ERR / Failure setting user credentials. | ||||
* | Reimplement ap_escape_urlencoded for Apache 2.2. | Jan Pazdziora | 2015-05-04 | 1 | -0/+25 |
| | |||||
* | Add support for replacement placeholders %s and %u. | Jan Pazdziora | 2015-05-04 | 1 | -1/+36 |
| | |||||
* | Add support for AuthPAMExpiredRedirect, to redirect to URL where user can ↵ | Jan Pazdziora | 2015-04-24 | 1 | -3/+17 |
| | | | | reset their password. | ||||
* | Populate PAM_RHOST to support host-based checks via pam_access(8). | Jan Pazdziora | 2014-06-23 | 1 | -1/+9 |
| | |||||
* | Avoid confusing error message "failed for user <pam-service>" when ↵mod_authnz_pam-0.9.1 | Jan Pazdziora | 2014-04-15 | 1 | -0/+1 |
| | | | | pam_authenticate step is skipped. | ||||
* | Declare create_dir_conf static as well, for proper isolation. | Jan Pazdziora | 2014-02-14 | 1 | -1/+1 |
| | |||||
* | Declare all functions static for proper isolation.mod_authnz_pam-0.7 | Jan Pazdziora | 2014-01-09 | 1 | -1/+1 |
| | |||||
* | Make pam_authenticate_with_login_password available to other modules.mod_authnz_pam-0.6 | Jan Pazdziora | 2014-01-09 | 1 | -0/+5 |
| | |||||
* | Implement the pam-account authz provider for Apache 2.4. | Jan Pazdziora | 2014-01-06 | 1 | -0/+26 |
| | |||||
* | Add support for require pam-account the-service-name. | Jan Pazdziora | 2014-01-06 | 1 | -0/+28 |
| | |||||
* | Apache module mod_authnz_pam. | Jan Pazdziora | 2014-01-06 | 1 | -0/+136 |