-
Sander Striker authored
* mod_ssl: Fix FakeBasicAuth for subrequests, by declining check_user_id. Otherwise it would run into the check that was to protect from externally fabricated Authorization headers, which would choke on the one added by mod_ssl itself. * mod_ssl: Add error msg for the case when FakeBasicAuth is tried to be tricked. IOW, when someone tries to spoof his identity. Reviewed by: Jeff Trawick, Greg Stein git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/APACHE_2_0_BRANCH@100942 13f79535-47bb-0310-9956-ffa450edef68
Sander Striker authored* mod_ssl: Fix FakeBasicAuth for subrequests, by declining check_user_id. Otherwise it would run into the check that was to protect from externally fabricated Authorization headers, which would choke on the one added by mod_ssl itself. * mod_ssl: Add error msg for the case when FakeBasicAuth is tried to be tricked. IOW, when someone tries to spoof his identity. Reviewed by: Jeff Trawick, Greg Stein git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/APACHE_2_0_BRANCH@100942 13f79535-47bb-0310-9956-ffa450edef68
To find the state of this project's repository at the time of any of these versions, check out the tags.
Loading