--
You received this message because you are subscribed to the Google Groups "modwsgi" group.
To unsubscribe from this group and stop receiving emails from it, send an email to modwsgi+u...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/modwsgi/ba89bbc5-99cb-4ca2-80d4-eb13d37f8fffn%40googlegroups.com.
On Jun 14, 2021, at 6:52 PM, Graham Dumpleton <graham.d...@gmail.com> wrote:
I don't remember exactly how digest auth works, but it worries me you generating a hash as return value which doesn't have a password as input. I suspect that Apache or something is going to compare that hash with one generated from what the browser submitted and they need to match. Can't see how they would match with what you are doing.
You received this message because you are subscribed to a topic in the Google Groups "modwsgi" group.
To unsubscribe from this topic, visit https://groups.google.com/d/topic/modwsgi/36iEHNSG-XM/unsubscribe.
To unsubscribe from this group and all its topics, send an email to modwsgi+u...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/modwsgi/4AB4D13B-E14B-4028-AB97-40645BABF624%40gmail.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/modwsgi/CAF91A5A-2531-42AF-A993-200D279EBAA4%40gmail.com.
On Jun 14, 2021, at 8:48 PM, Graham Dumpleton <graham.d...@gmail.com> wrote:
If mod_perl has a working solution it is possibly because they are rolling their own authentication handler from scratch, where as mod_wsgi hooks into the authentication provider hooks of Apache, which has more rigid rules around how the interfacing works.
To view this discussion on the web visit https://groups.google.com/d/msgid/modwsgi/EC84EECC-9A7C-46E7-8C21-FB8E5509CCDF%40gmail.com.
On Jun 14, 2021, at 9:00 PM, Neil Verkland <nver...@gmail.com> wrote:
Today’s tests the client did not send ‘bark bark’. That will be the definitive test (tomorrow) that I spoke of.
15595c15595
< allow = AUTH_DENIED;
---
> allow = -1;
15599,15614c15599
< allow = AUTH_GRANTED;
< }
< else if (result == Py_False) {
< allow = AUTH_DENIED;
< }
< else if (PyUnicode_Check(result)) {
< PyObject *str = NULL;
<
< str = PyUnicode_AsUTF8String(result);
<
< if (str) {
< adapter->r->user = apr_pstrdup(adapter->r->pool,
< PyString_AsString(str));
<
< allow = AUTH_GRANTED;
< }
---
> allow = 1;