Glenn Strauss
b73949e03f
[multiple] plugin.c handles common FREE_FUNC code
...
(simpler for modules; less boilerplate to cut-n-paste)
3 years ago
Glenn Strauss
8e713130b3
[mod_auth*] use config_plugin_values_init()
3 years ago
Glenn Strauss
e2de4e581e
[core] const char *name in struct plugin
...
put void *data (always used) as first member of struct plugin
add int nconfig member to PLUGIN_DATA
calloc() inits p->data to NULL
3 years ago
Glenn Strauss
36f64b26a1
[core] simpler config_check_cond()
...
optimize for common case where condition has been evaluated for
the request and a cached result exists
(also: begin isolating data_config)
3 years ago
Glenn Strauss
6eb34ef5ab
[core] add const to callers of http_header_*_get()
...
(The few places where value is modified in-place were not made const)
3 years ago
Glenn Strauss
47a758f959
[core] inline buffer key for *_patch_connection()
...
handle buffer key as part of DATA_UNSET in *_patch_connection()
(instead of key being (buffer *))
3 years ago
Glenn Strauss
3390642285
[mod_authn_gssapi] option to store delegated creds ( fixes #2967 )
...
default enabled for backwards compatibility; disable in future
(thx lameventanas)
x-ref:
"mod_authn_gssapi requires delegation?"
https://redmine.lighttpd.net/issues/2967
3 years ago
Glenn Strauss
e9440ecfdf
[mod_authn_gssapi] 500 if fail to delegate creds ( #2967 )
...
x-ref:
"mod_authn_gssapi requires delegation?"
https://redmine.lighttpd.net/issues/2967
3 years ago
Glenn Strauss
1300815688
[core] use buffer_eq_icase_ssn func
...
specialized buffer_eq_icase_ssn func replace strncasecmp()
in cases where string lengths are not known to be at least
as large as the len being compared case-insensitively.
(Separate commit in case any future changes modify the
implementation to be unsafe for shorter strings, where
strncasecmp() would stop at '\0' in either string)
4 years ago
6a988bb0d0
[multiple] cleaner calloc use in SETDEFAULTS_FUNC
...
github: closes #99
x-ref:
"cleaner calloc use in SETDEFAULTS_FUNC"
https://github.com/lighttpd/lighttpd1.4/pull/99
4 years ago
Glenn Strauss
65fcd7810f
[core] prefer buffer_append_string_len()
...
prefer buffer_append_string_len() when string len is known
(instead of buffer_append_string() which will recalculate strlen)
4 years ago
Glenn Strauss
3dd3cde902
[core] abstraction layer for HTTP header manip
...
http_header.[ch]
convert existing calls to manip request/response headers
convert existing calls to manip environment array (often header-related)
4 years ago
Glenn Strauss
9bc61f16cb
[core] attempt to quiet coverity false positives
6 years ago
Glenn Strauss
9e75b81982
[core] reduce exposure of unistd.h, other includes
...
reduce exposure of unistd.h, and some other include cleanup
6 years ago
Glenn Strauss
162e754d0d
[core] report file path when mkstemp() fails ( fixes #2802 )
...
x-ref:
"Could the error-log be improved a tiny bit in regards to "Permission denied" errors"
https://redmine.lighttpd.net/issues/2802
6 years ago
Glenn Strauss
7ef58b5a81
[mod_authn_gssapi] fix missing error ret, coverity
...
fix missing error returns and coverity warnings
6 years ago
Glenn Strauss
e628fc3509
[mod_authn_gssapi] better resource cleanup
6 years ago
Stefan Bühler
d352790331
[mod_authn_gssapi] fix memory leak
6 years ago
Glenn Strauss
204df06814
minor: coverity comments
6 years ago
Glenn Strauss
ac90699d28
[autobuild] rm module stub code for missing deps
...
remove module stub code since the build system(s) no longer build any
module when the dependencies for a given module are not present.
6 years ago
Glenn Strauss
5feb2694f7
[autobuild] remove mod_authn_gssapi dep on resolv
...
remove mod_authn_gssapi explicit dependency on -lresolv
This fixes build on FreeBSD when ./configure --with-krb5
(On systems that need libresolv, libkrb5 depends on libresolv)
Also remove obsolete hstrerror() references from build
6 years ago
Glenn Strauss
28d1213470
[mod_auth] fix printing of IP in error trace
6 years ago
Glenn Strauss
a401c9469a
[mod_auth] HTTP Basic auth backends also do authz ( #1817 )
...
HTTP Basic auth backends now do both authn and authz
in order to allow provide a means to extend backends to optionally
support group authz
x-ref:
"LDAP-Group support for HTTP-Authentication"
https://redmine.lighttpd.net/issues/1817
6 years ago
Glenn Strauss
d2b7c7bad2
remove excess initializers (fix compiler warnings)
6 years ago
Glenn Strauss
1c1a63786e
[mod_auth] mod_authn_gssapi Kerberos auth backend ( fixes #1899 )
...
module status: experimental; more testing and review needed
Kerberos library calls have been preserved from original patch set
and should be reviewed.
module has been quickly tested with Basic auth (Use over TLS!)
SPNEGO -has not- been tested. Again, kerberos library calls have
been preserved from original patch set. YMMV. (Use over TLS!)
x-ref:
"Kerberos/GSSAPI Delegation Support"
https://redmine.lighttpd.net/issues/1899
6 years ago
Glenn Strauss
Mohammed Sadiq
Stefan Bühler