Revision history for ApacheDBI. 0.82 June 03, 1999 - bug-fix spotted by "Dale Manemann" : correct the password handling for the case, where the password has been changed in the database and the old password is still cached. - proposal from Honza Pazdziora : add PerlCleanupHandler in Apache::DBI, which issues a rollback unless AutoCommit is on. - changed behavior of AuthzDBI: the first match of a requirement is sufficient for successful authorization. Prior to this release, all requirement lines had to be fulfilled. - proposal from Rauznitz Balazs : new function all_handlers() in Apache::DBI.pm. Returns all cached database handles, so that other handlers can perform tasks on them. - proposal from Michael Smith : new configuration option Auth_DBI_placeholder. Setting this option to true, will use placeholders for the given userid in the SELECT statements. This will speedup database access. - proposal from "Jordi 'Matematic' Salvat" : replace AuthName with a summary of all attributes relevant for the select statements. This still keeps the userid entries in the cache unique, but solves the problem with different AuthNames which eventually forces the user to authenticate several times. - new configuration option Auth_DBI_expeditive from "Jordi 'Matematic' Salvat" . When authorization fails, AuthzDBI returns AUTH_REQUIRED as default. With Auth_DBI_expeditive set to "on" it returns FORBIDDEN if access is denied. Hence this can be distinguished from the case, where the user just mistyped the password. - applied patch from Ask Bjoern Hansen : get rid of some annoying "Use of uninitialized value ..." - applied patch from Joshua Chamas : use eval{ping} to prevent using an invalid database handle. - added 'use Apache;' to Apache::DBI.pm as proposed by Michael Smith . - implemented multiple passwords per userid as proposed by dan hammer . - applied patch for case-insensitive user-ids from . - implement proposal from Honza Pazdziora : Auth_DBI_casesensitive replaced by Auth_DBI_uidcasesensitive and Auth_DBI_pwdcasesensitive. - applied patch from fdc@cliwe.ping.de (Frank D. Cringle): prevent "Use of uninitialized value warning" in error.log. - work-around for mod_perl problem spotted by Mike Hayward : when building mod_perl as dso, Apache::DBI was always skipping the connection cache. 0.81 Sep 08, 1998 - Cache entries consider the AuthName to distinguish between identical user-ids in different authorization realms. 0.80 Jul 26, 1998 - applied patch from Anto Prijosoesilo : change second argument for crypt function from $salt to $passwd in order to be compatible with BSD. - applied patch for Apache::DBI.pm from Randy Harmon : reject database connect during server startup. - call CleanupHandler in Authen DBI and AuthzDBI only if cache_time is configured. 0.79 Jun 06, 1998 - implemented a simple caching mechanism in AuthenDBI as well as in AuthzDBI. Per default this cache is disabled and can be enabled by setting Auth_DBI_cache_time > 0. YOU NEED AT LEAST VERSION apache_1.3b6 ! - applied patch from Jeff Baker fix menu item for DBI connections that are made using the Oracle TNS listener. - implemented proposal from Leslie Mikesell change group-handling in AuthzDBI. All groups related to the given user are selected at once and then put into a comma-separated list. This list is compared with the required groups. Depending upon the existence of Auth_DBI_grp_table, the SQL-select looks either in the pwd_table or in the grp_table for the groupid. PLEASE CHECK THE MODULE DOCUMENTATION AND YOUR .htaccess ! 0.78 February 18, 1998 - applied patch from "B. W. Fitzpatrick" DBI calls connect always with 4 parameters, even if they are empty. This results in an error with DBD-Informix. - added '$dbh->disconnect' before 'return SERVER_ERROR;' (fyodor@mp.aha.ru ). - added optional where-clause in AuthenDBI as well as in AuthzDBI (Helmut Patay ). 0.77 January 18, 1998 - applied patches from Doug MacEachern: o new method Apache::DBI->connect_on_init() o set environment variable REMOTE_GROUP in AuthzDBI.pm. 0.76 December 18, 1997 - removed unused variable from AuthzDBI.pm 0.75 November 02, 1997 - strip trailing blanks from password for fixed-length data type - new token: 'Auth_DBI_casesensitive' (Hakan Tandogan - fixed bug when using attributes in connect method - fixed bug which appeared with perl5.004_04 0.74 August 15, 1997 - new module: AuthzDBI for Authorization, (supports group authorization) - complete rewrite of AuthenDBI. - configuration directives and functionality of both modules are supposed to be identical with mod_auth_msql of the apache daemon. - adapted to new DBI connect syntax - changed names of config vars to be more consistent with other authentication modules. PLEASE ADAPT YOUR CONFIGURATION !!! 0.73 July 15, 1997 - fixed bug in DBI.pm: check return value of connect 0.72 July 13, 1997 - added logging option to AuthenDBI 0.71 July 01, 1997 - debugging is now controlled by a global variable 0.7 July 01, 1997 - changed the way of initiating debug output 0.6 May 20, 1997 - fixed bug which caused a disconnect with some DBD-drivers (Oracle,...) 0.5 May 16, 1997 - applied patches from Stephen E Kane 0.4 May 13, 1997 - fixed check for first internal request in AuthenDBI.pm 0.3 May 5, 1997 - make AuthenDBI to be a separate module - adapt to new DBI, so code changes are not required anymore for persistent connections 0.2 Apr 6, 1997 - unused methods deleted - AuthenDBI integrated - method for disconnect added - menu item for Apache::Status added 0.1 Mar 15, 1997 - creation