authoritative, allow the user to retry. This is consistent with the other auth
modules. It previously only allowed a retry if the password was invalid.
git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@96893
13f79535-47bb-0310-9956-
ffa450edef68
"[%d] auth_ldap authenticate: "
"user %s authentication failed; URI %s [%s][%s]",
getpid(), r->user, r->uri, ldc->reason, ldap_err2string(result));
- if (LDAP_INVALID_CREDENTIALS == result) {
+ if ((LDAP_INVALID_CREDENTIALS == result) || sec->auth_authoritative) {
ap_note_basic_auth_failure(r);
return HTTP_UNAUTHORIZED;
}
else {
- return sec->auth_authoritative? HTTP_UNAUTHORIZED: DECLINED;
+ return DECLINED;
}
}