/* Licensed to the Apache Software Foundation (ASF) under one or more
* contributor license agreements. See the NOTICE file distributed with
* this work for additional information regarding copyright ownership.
* The ASF licenses this file to You under the Apache License, Version 2.0
* (the "License"); you may not use this file except in compliance with
* the License. You may obtain a copy of the License at
*
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
#include "apr_strings.h"
#include "apr_file_info.h"
#include "apr_user.h"
#include "ap_config.h"
#include "ap_provider.h"
#include "httpd.h"
#include "http_config.h"
#include "http_core.h"
#include "http_log.h"
#include "http_protocol.h"
#include "http_request.h"
#include "mod_auth.h"
#include "mod_authz_owner.h"
{
{NULL}
};
const char *require_args,
const void *parsed_require_args)
{
#if !APR_HAS_USER
reason = "'Require file-owner' is not supported on this platform.";
"Authorization of user %s to access %s failed, reason: %s",
return AUTHZ_DENIED;
#else /* APR_HAS_USER */
if (!r->user) {
return AUTHZ_DENIED_NO_USER;
}
if (!r->filename) {
reason = "no filename available";
"Authorization of user %s to access %s failed, reason: %s",
return AUTHZ_DENIED;
}
if (status != APR_SUCCESS) {
"Authorization of user %s to access %s failed, reason: %s",
return AUTHZ_DENIED;
}
reason = "no file owner information available";
"Authorization of user %s to access %s failed, reason: %s",
return AUTHZ_DENIED;
}
reason = "could not get name of file owner";
"Authorization of user %s to access %s failed, reason: %s",
return AUTHZ_DENIED;
}
owner);
"Authorization of user %s to access %s failed, reason: %s",
return AUTHZ_DENIED;
}
/* this user is authorized */
return AUTHZ_GRANTED;
#endif /* APR_HAS_USER */
}
{
/* file-group only figures out the file's group and lets
* Thus, these modules have to hook themselves after
* mod_authz_owner and of course recognize 'file-group', too.
*/
#if !APR_HAS_USER
return NULL;
#else /* APR_HAS_USER */
apr_status_t status = 0;
if (!r->filename) {
reason = "no filename available";
"Authorization of user %s to access %s failed, reason: %s",
return NULL;
}
if (status != APR_SUCCESS) {
"Authorization of user %s to access %s failed, reason: %s",
return NULL;
}
reason = "no file group information available";
"Authorization of user %s to access %s failed, reason: %s",
return NULL;
}
reason = "could not get name of file group";
"Authorization of user %s to access %s failed, reason: %s",
return NULL;
}
return group;
#endif /* APR_HAS_USER */
}
{
NULL,
};
{
}
{
NULL, /* dir config creater */
NULL, /* dir merger --- default is to override */
NULL, /* server config */
NULL, /* merge server config */
authz_owner_cmds, /* command apr_table_t */
register_hooks /* register hooks */
};