Differences

This shows you the differences between two versions of the page.

--- plugin:authhttp:discussion [2014-10-09 06:29] – [Problems with 2014-05-05b and later] 111.69.36.130
+++ plugin:authhttp:discussion [2014-10-09 06:50] (current) – [Problems with 2014-05-05b and later] 111.69.36.130
@@ Line 1: / Line 1: @@
 ====== Problems with 2014-05-05b and later ======
-While this plugin works well in 2014-05-05a, it is broken in 2014-05-05b and newer releases.  This is most likely due to the fix applied for the Null byte poisoning in LDAP authentication problem described at:
+While this plugin works well for me in 2014-05-05a, it is broken for my setup in 2014-05-05b and newer releases.  This is most likely due to the fix applied for the Null byte poisoning in LDAP authentication problem described at:
 http://www.freelists.org/post/dokuwiki/Fwd-Dokuwiki-maybe-security-issue-Null-byte-poisoning-in-LDAP-authentication
@@ Line 22: / Line 22: @@
 </code>
-My guess is that the password (''$pass'') may be empty during HTTP authentication.
+My guess is that the password (''$pass'') may be empty during HTTP authentication mechanisms (I'm using LemonLDAP to provide both LDAP and GoogleApps authentication).
+A simple fix for my setup was to revert part of this change using:
+<code bash>
+sed -i 's,if(!empty($pass) && ,if(,' inc/auth.php
+</code>
 ====== Problems mit Server API CGI/FASTCGI ======