Hello all,
I am writing a mod_perl authentication module (My::Auth).
This module sets the user using the Apache2::RequestRec::user method.
package My::Auth;
sub {
....
$r->user('getting the user in my module internal structure');
return OK;
}
In the Apache configuration file, I can use the configuration
<Location /test_user>
PerlAuthHandler My::Auth
Require user user1
....
</Location>
I would like to use my module in another configuration where group is
checked
<Location /test_group>
PerlAuthHandler My::Auth
Require group group1
....
</Location>
I can not find any mod_perl API method (Apache2::RequestRec::group ?) to set
the group. I only found Apache2::RequestRec::require method, but this method
only read the require configuration.
One way to solve the problem is the modify the My::Auth::handler method :
package My::Auth;
sub {
....
$r->user('getting the user in my module internal structure');
my $requires = $r->requires;
# here the code to verify authorization
return OK;
}
but I think this is a workaround:
. My::Auth::handler is an AUTHENTICATION handler
. the code to verify the AUTHORIZATION should have to be executed by the
httpd core.
How can I manage authorization in this case ?
Thanks
