Don't allow inactive accounts to authenticate using basic auth
Jon Stanley
jonstanley at gmail.com
Sat Mar 21 21:40:39 UTC 2009
Oops, there's one more:
diff --git a/modules/prelude/templates/prewikka-httpd.conf
b/modules/prelude/templates/prewikka-httpd.conf
index 3cabd5b..9486d2e 100644
--- a/modules/prelude/templates/prewikka-httpd.conf
+++ b/modules/prelude/templates/prewikka-httpd.conf
@@ -14,6 +14,7 @@ ScriptAlias /prewikka /usr/share/prewikka/cgi-bin/prewikka.cgi
Auth_PG_pwd_table people
Auth_PG_uid_field username
Auth_PG_pwd_field password
+ Auth_PG_whereclause " and status='active'"
Auth_PG_grp_table user_group
Auth_PG_grp_user_field username
Auth_PG_grp_group_field groupname
2009/3/21 Ricky Zhou <ricky at fedoraproject.org>:
> On 2009-03-21 08:59:24 PM, Jon Stanley wrote:
>> Inactive accounts could authenticate to sites using mod_auth_pgsql.
>>
>> Pretty sure all of these apps are not under freeze, but rather be safe. Some +1's?
> We tested this out on hosted1 with active and inactive accounts, so:
> +1
>
> Thanks,
> Ricky
>
> _______________________________________________
> Fedora-infrastructure-list mailing list
> Fedora-infrastructure-list at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-infrastructure-list
>
>
More information about the infrastructure
mailing list