Hey Yann,
You're welcome; would you mind cc'ing me on the devel mail?
Cheers,
Michel Stam
> On 12 May 2015, at 10:09, Yann Ylavic <ylavic.dev@xxxxxxxxx> wrote:
>
> Hello Michel,
>
>> On Mon, May 11, 2015 at 10:54 PM, Michel Stam <michel@xxxxxxxxxxx> wrote:
>>
>> I was tinkering over the weekend with mod_authz_dbd and mysql, and i could not get a RequireAny/RequireAll to match on multiple Require dbd-group statements. It would always match only the last result from the query, but once for every row in the resultset.
>>
>> Example:
>> <LocationMatch "/(?<name>[^/]+)/">
>> <RequireAny>
>> Require user %{env:MATCH_NAME}
>> Require dbd-group %{env:MATCH_NAME}
>> Require dbd-group Administrators
>> </RequireAny>
>> </LocationMatch>
>>
>> After some searching, it appeared to me to be a regression of this:
>> https://bz.apache.org/bugzilla/show_bug.cgi?id=46421
>
> The fix mentioned there is about APR's dbd (mysql) code but has never
> been pushed to a release (the bugzilla report is still open).
> As already discussed in [1] (with a simililar fix for mod_authn_dbd in
> [2]), I don't think it should be addressed in APR though (but in httpd
> as you and the OP of bugzilla #46421 proposed).
>
> There also seems to be other misuses of apr_dbd_get_entry() returned
> values in httpd, I'll start a thread on the dev@ mailing-list and
> propose a fix.
>
> Thanks for reporting this,
> Yann.
>
> [1] http://www.mail-archive.com/dev@xxxxxxxxxxxxxx/msg26024.html
> [2] http://svn.apache.org/r1663647
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
> For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
>
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
|