diff options
Diffstat (limited to 'README')
-rw-r--r-- | README | 13 |
1 files changed, 9 insertions, 4 deletions
@@ -7,10 +7,15 @@ retrieves the login and password information from the POST HTTP request, runs PAM authentication with those credentials, and sets the REMOTE_USER environment variable if the authentication passes. The internal r->user field is also set so other modules can use it (even -if the module is invoked very late in the request processing). If the -REMOTE_USER is already set (presumably by some previous module), no -authentication takes place. If the PAM authentication fails, environment -variable EXTERNAL_AUTH_ERROR is set to the string describing the error. +if the module is invoked very late in the request processing). The +lookup_identity_hook from mod_lookup_identity is explicitly called +after the r->user is set. + +If the REMOTE_USER is already set (presumably by some previous module), +no authentication takes place. + +If the PAM authentication fails, environment variable +EXTERNAL_AUTH_ERROR is set to the string describing the error. The assumption is that the application will be amended to trust the REMOTE_USER value if it is set and skip its own login/password |