diff options
author | olavmrk <olavmrk@a716ebb1-153a-0410-b759-cfb97c6a1b53> | 2013-03-06 12:53:38 +0000 |
---|---|---|
committer | olavmrk <olavmrk@a716ebb1-153a-0410-b759-cfb97c6a1b53> | 2013-03-06 12:53:38 +0000 |
commit | 81cf686843634f2e2ff70db6553ef712c531ced0 (patch) | |
tree | 6073c55be0e7b1564886a72f9710a56829a94dda /auth_mellon_config.c | |
parent | 5ba60b7ad9f9eff2a7eabcf39c05de6e3e6d8437 (diff) | |
download | mod_auth_mellon-81cf686843634f2e2ff70db6553ef712c531ced0.tar.gz mod_auth_mellon-81cf686843634f2e2ff70db6553ef712c531ced0.tar.xz mod_auth_mellon-81cf686843634f2e2ff70db6553ef712c531ced0.zip |
Disable replay of POST request by default.
Since we are going to disable autocreation of the POST data directory,
we will need to disable POST replay by default. This patch adds the
MellonPostReplay option, which can be used to enable and disable the
POST replay functionality on a per-location basis.
git-svn-id: https://modmellon.googlecode.com/svn/trunk@177 a716ebb1-153a-0410-b759-cfb97c6a1b53
Diffstat (limited to 'auth_mellon_config.c')
-rw-r--r-- | auth_mellon_config.c | 9 |
1 files changed, 9 insertions, 0 deletions
diff --git a/auth_mellon_config.c b/auth_mellon_config.c index 7e103cc..6a1eb2d 100644 --- a/auth_mellon_config.c +++ b/auth_mellon_config.c @@ -1144,6 +1144,13 @@ const command_rec auth_mellon_commands[] = { "A list of entity of IdP whose logout requests signatures will not " "be valided" ), + AP_INIT_FLAG( + "MellonPostReplay", + ap_set_flag_slot, + (void *)APR_OFFSETOF(am_dir_cfg_rec, post_replay), + OR_AUTHCFG, + "Whether we should replay POST requests that trigger authentication. Default is off." + ), {NULL} }; @@ -1229,6 +1236,7 @@ void *auth_mellon_dir_config(apr_pool_t *p, char *d) dir->authn_context_class_ref = apr_array_make(p, 0, sizeof(char *)); dir->subject_confirmation_data_address_check = inherit_subject_confirmation_data_address_check; dir->do_not_verify_logout_signature = apr_hash_make(p); + dir->post_replay = inherit_post_replay; return dir; } @@ -1442,6 +1450,7 @@ void *auth_mellon_dir_merge(apr_pool_t *p, void *base, void *add) new_cfg->subject_confirmation_data_address_check = CFG_MERGE(add_cfg, base_cfg, subject_confirmation_data_address_check); + new_cfg->post_replay = CFG_MERGE(add_cfg, base_cfg, post_replay); return new_cfg; } |