1. 首頁
  2. 問答
  3. mod_perl + mod_authn_dbd不接受AuthDBDUserPWQuery

mod_perl + mod_authn_dbd不接受AuthDBDUserPWQuery

2017-08-10 116 views
0

介紹: 我們公司通過mod_perl使用動態生成的虛擬主機從我們的數據庫生成虛擬主機。我們基本上有一個表格「域名」,它可以爲我們的數百名客戶和合作夥伴動態修改。mod_perl + mod_authn_dbd不接受AuthDBDUserPWQuery

我們有幾種不同的別名,包括和規則的模板。因此,我們基本上用下面的Perl腳本生成不同的模板:

<Perl> 
    #!perl 

    use DBI; 
    use Time::HiRes qw(time); 

    use Apache2::ServerUtil(); 
    my $s = Apache2::ServerUtil->server; 

    $Apache2::PerlSections::Save = 1; 

    my $dsn = "dbi:mysql:...:..."; 
    my $user = "..."; 
    my $pw = "..."; 
    my $db = DBI->connect($dsn, $user, $pw) or die $DBI::errstr; 

    my $select = qq/SELECT * FROM domains ORDER BY ID/; 
    my $sth_select = $db->prepare($select); 

    $sth_select->execute() or die $DBI::errstr; 
    my @row; 
    while(@row = $sth_select->fetchrow_array) { 
     $My::domain = @row[1]; 
     $My::dir = @row[3]; 
     $My::template = @row[4]; 
     $s->add_config(["Include /srv/www/vhosts/templates/".$My::template]); 
    } 
</Perl>

在我們定義使用perl循環使用的變量的主機名的模板。

對於預覽目的,我們希望用數據庫控制的登錄來保護一些項目/域。這就是mod_atuhn_dbd進入遊戲的地方。

這是我們的數據庫登錄爲不同的項目和地方的實際問題開始最終的解決方案:

<VirtualHost *:80> 
    DBDriver mysql 
    DBDParams "host=... dbname=... port=3306 user=... pass=..." 
    DBDMin  1 
    DBDKeep 2 
    DBDMax  10 
    DBDExptime 60 

    <Perl> 
     use File::Copy; 
     $ServerName = $My::domain; 
     $DocumentRoot = "/srv/www/".$My::dir; 

     $Directory {"/srv/www/".$My::dir} = { 
      AllowOverride  => "All", 
      Order    => "allow,deny", 
      deny     => "from all", 
      Satisfy    => "Any", 
      Require    => "valid-user", 
      AuthType    => "Basic", 
      AuthName    => "Achtung",    
      AuthBasicProvider => "socache dbd",    
      AuthnCacheProvideFor => "dbd",    
      AuthnCacheContext => "Test",    
      AuthnCacheTimeout => "60", 
      AuthDBDUserPWQuery => "SELECT `user_passwd` FROM prev_user` WHERE `host_name` = '".$My::dir"' AND `user_name` = %s"    
     }; 
    </Perl> 
</VirtualHost>

問題是 - 阿帕奇說:

apache2[10988]: $parms->add_config() has failed: 
AuthDBDUserPWQuery takes one argument, Query used to fetch password for user at /usr/lib/x86_64-linux-gnu/perl5/5.20/Apache2/PerlSections.pm line 216.\n

如果我刪除僞指令並將其直接放入虛擬主機,它將按預期方式工作,用戶將獲得提示並通過數據庫參數登錄。太糟糕了,沒有選擇在查詢中使用動態主機,所以這不會真正起作用。

<VirtualHost *:80> 
    <Perl> 
     [...] 
     $Directory {"/srv/www/".$My::dir} = { 
      AllowOverride  => "All", 
      Order    => "allow,deny", 
      deny     => "from all", 
      Satisfy    => "Any", 
      Require    => "valid-user", 
      AuthType    => "Basic", 
      AuthName    => "Achtung",    
      AuthBasicProvider => "socache dbd",    
      AuthnCacheProvideFor => "dbd",    
      AuthnCacheContext => "Test",    
      AuthnCacheTimeout => "60"   
     }; 
    </Perl> 

    <Directory /srv/www/websites/admin> 
     AuthDBDUserPWQuery "SELECT `user_passwd` FROM prev_user` WHERE `host_name` = '[NEED DYNAMIC HOST HERE]' AND `user_name` = %s" 
    </Directory>  
</VirtualHost>

似乎有一些奇怪的問題,有以下部分:

$Directory {"/srv/www/".$My::dir} = { 
      [...] 
      AuthDBDUserPWQuery => "SELECT `user_passwd` FROM prev_user` WHERE `host_name` = '".$My::dir"' AND `user_name` = %s"    
};

有什麼建議?

來源

2017-08-10 Daniel Rikarito

回答

0

欲瞭解更多信息:

似乎是mod_perl中的錯誤。清除查詢中的空格會將該字符串解釋爲一個值。很顯然,空格會導致字符串被解釋爲多個值。

因此,解決辦法是:

$Directory {"/srv/www/".$My::dir} = { 
     [...] 
     AuthDBDUserPWQuery => "SELECT`user_passwd`FROM`prev_user`WHERE`host_name`='".$My::dir"'AND`user_name`=%s" 
}

非常骯髒,混亂,但它的工作原理。

來源

2017-08-10 12:10:54

相關問題

 相關問題