Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: Cherokee: dev

Issue 668 in cherokee: PAM validator does not honnor "realm"

  

 
Cherokee dev RSS feed   Index | Next | Previous | View Threaded


codesite-noreply at google

Dec 12, 2009, 3:30 PM

Post #1 of 5 (413 views)
Permalink
Issue 668 in cherokee: PAM validator does not honnor "realm"
Status: New
Owner: ----

New issue 668 by arnaud.cornet: PAM validator does not honnor "realm"
http://code.google.com/p/cherokee/issues/detail?id=668

The pam service name is hardcoded to cherokee, while the admin page allows
you to setup a "realm".

Very confusing, but very easy to fix, see patch.

thanks

Attachments:
validator_pam.diff 764 bytes

--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev


codesite-noreply at google

Dec 13, 2009, 12:48 PM

Post #2 of 5 (381 views)
Permalink
Re: Issue 668 in cherokee: PAM validator does not honnor "realm" [In reply to]
Comment #1 on issue 668 by alobbs: PAM validator does not honnor "realm"
http://code.google.com/p/cherokee/issues/detail?id=668

I don't think the patch is right, actually. Check out the pam_start()
function prototype:

======
int pam_start(const char *service, const char *user, const struct pam_conv
*pam_conv, pam_handle_t **pamh);
======

and the 'service' argument description: "The service argument specifies the
name of the policy to apply".

I cannot see how it'd be related to the HTTP authentication realm. Now,
service is hardcoded to "cherokee", so it allows to set custom
configuration at PAM level.

--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev


codesite-noreply at google

Dec 13, 2009, 1:29 PM

Post #3 of 5 (379 views)
Permalink
Re: Issue 668 in cherokee: PAM validator does not honnor "realm" [In reply to]
Comment #2 on issue 668 by arnaud.cornet: PAM validator does not
honnor "realm"
http://code.google.com/p/cherokee/issues/detail?id=668

Right, I assumed the "realm" meant the PAM service name here.
Allowing to configure the service name can also enable different pam
service name for
different vhost or handlers which is what I wanted. Would you accept
another patch
that implements that correctly?

--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev


codesite-noreply at google

Dec 13, 2009, 1:40 PM

Post #4 of 5 (381 views)
Permalink
Re: Issue 668 in cherokee: PAM validator does not honnor "realm" [In reply to]
Comment #3 on issue 668 by ste...@konink.de: PAM validator does not
honnor "realm"
http://code.google.com/p/cherokee/issues/detail?id=668

http://code.google.com/p/cherokee/issues/detail?id=609

If you are going to work on pam, please look at the above bug as well.

--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev


cherokee at googlecode

Feb 11, 2010, 9:56 AM

Post #5 of 5 (319 views)
Permalink
Re: Issue 668 in cherokee: PAM validator does not honnor "realm" [In reply to]
Comment #4 on issue 668 by skarcha: PAM validator does not honnor "realm"
http://code.google.com/p/cherokee/issues/detail?id=668

The idea sounds good... But my knowledge of PAM is very limited, so I don't
know
whether it's worth it.


--
You received this message because you are listed in the owner
or CC fields of this issue, or because you starred this issue.
You may adjust your issue notification preferences at:
http://code.google.com/hosting/settings
_______________________________________________
Cherokee-dev mailing list
Cherokee-dev [at] lists
http://lists.octality.com/listinfo/cherokee-dev

Cherokee dev RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact Gossamer Threads
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.