The documentation for the AuthType field does not seem to give examples for custom auth handlers.
The AuthType I put in is the package name that has the auth subroutines in it. This is pulled from other examples, including Apache2::AuthCookie where they set it to their module name. None of the options listed there seem applicable to me: I'm not using basic auth, I'm not using mod_auth_digest, or mod_auth_form, and I don't have no auth... so it doesn't seem right to use AuthType None. (That AuthType setting was working fine in Apache 2.2) On Fri, Sep 12, 2014 at 1:22 PM, lesleyb <lesl...@herlug.org.uk> wrote: > On Fri, Sep 12, 2014 at 12:14:35PM -0400, Lathan Bidwell wrote: > > I have looked all around apache's documentation on how to upgrade from > 2.2 > > to 2.4, but they don't include much about using PerlAddAuthzProvider or > > PerlAuthenHandler. > > > > I have this config section: > > > > PerlAddAuthzProvider membersuser Application::User::Members->authorize24 > > > > <DirectoryMatch ^.*/members/> > > DirectoryIndex disabled > > PerlAuthenHandler > Application::User::Members->authenticate24 > > #PerlAuthenHandler > Application::User::Members::authenticate24 > > > > AuthType Application::User::Members > > AuthName "Members" > > > > Require membersuser testing123 > > </DirectoryMatch> > > > > > > But for some reason, my authorize24 subroutine is being called before my > > authenticate24 subroutine. > > > > I have simplified those 2 subroutines down to printing debugging info to > > the error log, (the authen sub sets $r->user('testing')), but I cannot > > figure out why the handlers are called in the wrong order. > > Summary: Hazarding a complete guess : Wrong syntax? > > AuthType > "This directive selects the type of user authentication for a directory. > The > authentication types available are None, Basic (implemented by > mod_auth_basic), > Digest (implemented by mod_auth_digest), and Form (implemented by > mod_auth_form)." [1] > > Not totally familiar with this (just learning it myself) but that gives me > AuthType Basic|Digest|Form|None > > Application::Users::Members isn't mentioned in the apache documentation ;-> > > [2] gives better clues thusly: > > "Here is the whole configuration section that requires users to > authenticate > before they are allowed to run the registry scripts from /perl/: > > <Location /perl/> > SetHandler perl-script > PerlResponseHandler ModPerl::Registry > PerlAuthenHandler MyApache2::SecretLengthAuth > Options +ExecCGI > > AuthType Basic > AuthName "The Gate" > Require valid-user > </Location> > " > I'm sure you can extrapolate the information in that article and > particularly > that config snippet given above to your particular situation. > > Please note that article's use of the Require Directive more on which can > be > found in [3] > > Good luck and kind regards > > L. > [1] http://httpd.apache.org/docs/current/mod/mod_authn_core.html > [2] > http://perl.apache.org/docs/2.0/user/handlers/http.html#PerlAuthzHandler > [3] http://httpd.apache.org/docs/current/mod/mod_authz_core.html > > > -- > BEGIN-ANTISPAM-VOTING-LINKS > ------------------------------------------------------ > > Teach CanIt if this mail (ID 0aMOhnkWA) is spam: > Spam: > http://www.andrews.edu/spam/b.php?i=0aMOhnkWA&m=d801d7a101c2&c=s > Not spam: > http://www.andrews.edu/spam/b.php?i=0aMOhnkWA&m=d801d7a101c2&c=n > Forget vote: > http://www.andrews.edu/spam/b.php?i=0aMOhnkWA&m=d801d7a101c2&c=f > ------------------------------------------------------ > END-ANTISPAM-VOTING-LINKS > >