diff options
| author | Jan Pazdziora <jpazdziora@redhat.com> | 2013-11-19 10:58:59 +0800 |
|---|---|---|
| committer | Jan Pazdziora <jpazdziora@redhat.com> | 2013-11-19 13:06:34 +0800 |
| commit | 4d27bb9e099dc0becbd7eeb20f950a5969db6272 (patch) | |
| tree | 342d3b32a0bad89fec38802becf9d56d16259174 /README | |
| parent | a8482a3c5a4d4b1cd318deb4630e2094341fd8ad (diff) | |
| download | mod_intercept_form_submit-4d27bb9e099dc0becbd7eeb20f950a5969db6272.tar.gz mod_intercept_form_submit-4d27bb9e099dc0becbd7eeb20f950a5969db6272.tar.xz mod_intercept_form_submit-4d27bb9e099dc0becbd7eeb20f950a5969db6272.zip | |
Call lookup_identity_hook from mod_lookup_identity if it exists, after the (new) r->user was set.
Diffstat (limited to 'README')
| -rw-r--r-- | README | 13 |
1 files changed, 9 insertions, 4 deletions
@@ -7,10 +7,15 @@ retrieves the login and password information from the POST HTTP request, runs PAM authentication with those credentials, and sets the REMOTE_USER environment variable if the authentication passes. The internal r->user field is also set so other modules can use it (even -if the module is invoked very late in the request processing). If the -REMOTE_USER is already set (presumably by some previous module), no -authentication takes place. If the PAM authentication fails, environment -variable EXTERNAL_AUTH_ERROR is set to the string describing the error. +if the module is invoked very late in the request processing). The +lookup_identity_hook from mod_lookup_identity is explicitly called +after the r->user is set. + +If the REMOTE_USER is already set (presumably by some previous module), +no authentication takes place. + +If the PAM authentication fails, environment variable +EXTERNAL_AUTH_ERROR is set to the string describing the error. The assumption is that the application will be amended to trust the REMOTE_USER value if it is set and skip its own login/password |