Hello Michel,
On Mon, May 11, 2015 at 10:54 PM, Michel Stam <michel@xxxxxxxxxxx> wrote:
>
> I was tinkering over the weekend with mod_authz_dbd and mysql, and i could not get a RequireAny/RequireAll to match on multiple Require dbd-group statements. It would always match only the last result from the query, but once for every row in the resultset.
>
> Example:
> <LocationMatch "/(?<name>[^/]+)/">
> <RequireAny>
> Require user %{env:MATCH_NAME}
> Require dbd-group %{env:MATCH_NAME}
> Require dbd-group Administrators
> </RequireAny>
> </LocationMatch>
>
> After some searching, it appeared to me to be a regression of this:
> https://bz.apache.org/bugzilla/show_bug.cgi?id=46421
The fix mentioned there is about APR's dbd (mysql) code but has never
been pushed to a release (the bugzilla report is still open).
As already discussed in [1] (with a simililar fix for mod_authn_dbd in
[2]), I don't think it should be addressed in APR though (but in httpd
as you and the OP of bugzilla #46421 proposed).
There also seems to be other misuses of apr_dbd_get_entry() returned
values in httpd, I'll start a thread on the dev@ mailing-list and
propose a fix.
Thanks for reporting this,
Yann.
[1] http://www.mail-archive.com/dev@xxxxxxxxxxxxxx/msg26024.html
[2] http://svn.apache.org/r1663647
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|