Ubuntu 6.10 -> 7.04 upgrade: Apache 2.2 ldap changes

By
Jason Axley
on July 22, 2007 10:34 PM digg this!| | Comments (0) | TrackBacks (0)

Just suffered through some lame apache module syntax changes on Ubuntu after upgrading to 7.0.4.  This is why I don't skip major versions...

Here is my functioning template on Ubuntu 7.04 Feisty:


AuthBasicProvider ldap
AuthName "Secret Website"
AuthType Basic
AuthzLDAPAuthoritative on     # prevent other mods from authenticating this user on failure
# protocol://server:port/base?attribute?scope?filter
AuthLDAPURL ldap://localhost:389/blah
AuthLDAPBindDN blah
AuthLDAPBindPassword "secret"
# require membership in LDAP group for access
require ldap-group cn=mygroup,ou=Groups,dc=example,dc=com
There were several major changes that kept my site from working after the upgrade:

Deprecated directives:

AuthLDAPAuthoritative (now AuthzLDAPAuthoritative)
AuthLDAPEnabled

New directive required:

AuthBasicProvider ldap

This tells the mod_auth_basic module to defer to the mod_authnz_ldap module for authentication instead of handling it on its own.  If you don't specify it, you get this lovely cryptic error in your server error log:  
[error] Internal error: pcfg_openfile() called with NULL filename
require group now only is used for local UNIX groups.  For LDAP, you have to use require ldap-group.

0 TrackBacks

Listed below are links to blogs that reference this entry: Ubuntu 6.10 -> 7.04 upgrade: Apache 2.2 ldap changes.

TrackBack URL for this entry: http://juxtaposition.axley.net/blog-bin/mt-tb.cgi/690

Leave a comment

March 2011

Sun Mon Tue Wed Thu Fri Sat
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31    

«« December 2010

Sun Mon Tue Wed Thu Fri Sat
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31    

Archives

Contact: Jason Axley

Search Amazon:

Amazon Logo

Search


Categories

Tag Cloud

Recent Posts

Powered by Movable Type 4.1
Subscribe to this blog's feed
[What is this?]