diff options
author | Simo Sorce <simo@redhat.com> | 2015-03-30 12:48:30 -0400 |
---|---|---|
committer | Simo Sorce <simo@redhat.com> | 2015-03-31 12:18:05 -0400 |
commit | e5db7c1f5738c7874e73869a2f4511193f956b81 (patch) | |
tree | 330afe698ef7592211c8517cb513654095d6c8fd /contrib/mod_auth_gssapi.spec | |
parent | 286e3dac69c3d4b32db93de1f9937f434383588f (diff) | |
download | mod_auth_gssapi-e5db7c1f5738c7874e73869a2f4511193f956b81.tar.gz mod_auth_gssapi-e5db7c1f5738c7874e73869a2f4511193f956b81.tar.xz mod_auth_gssapi-e5db7c1f5738c7874e73869a2f4511193f956b81.zip |
Handle authentication on subrequests
In some cases (like during directory listing) Apache will re-run the
authentication code. Many GSSAPI mechanism have replay detection so
we cannot simply rerun the accept_sec_context phase. Others require
multiple steps. When authntication has already been estalished just
implicitly consider the authentication successfully performed and
copy the user name. Otherwise fail.
If a subrequest hits a location with a different mod_auth_gssapi
configuration warn but do not error off right away.
Fixes #15
Diffstat (limited to 'contrib/mod_auth_gssapi.spec')
0 files changed, 0 insertions, 0 deletions