nginx: src/http/modules/ngx_http_access

comparison src/http/modules/ngx_http_access_module.c @ 663:6d5c1535bb9d release-0.3.53

nginx-0.3.53-RELEASE import *) Change: the "add_header" directive adds the string to 204, 301, and 302 responses. *) Feature: the "server" directive in the "upstream" context supports the "weight" parameter. *) Feature: the "server_name" directive supports the "*" wildcard. *) Feature: nginx supports the request body size more than 2G. *) Bugfix: if a client was successfully authorized using "satisfy_any on", then anyway the message "access forbidden by rule" was written in the log. *) Bugfix: the "PUT" method may erroneously not create a file and return the 409 code. *) Bugfix: if the IMAP/POP3 backend returned an error, then nginx continued proxying anyway.

author	Igor Sysoev <igor@sysoev.ru>
date	Fri, 07 Jul 2006 16:33:19 +0000
parents	5d2b8078c1c2
children	63a820b0bc6c

comparison

equal deleted inserted replaced

-:4c15f63afe65
+:6d5c1535bb9d
 ngx_http_access_handler(ngx_http_request_t *r)
 {
 ngx_uint_t                   i;
 struct sockaddr_in          *sin;
 ngx_http_access_rule_t      *rule;
+ngx_http_core_loc_conf_t    *clcf;
 ngx_http_access_loc_conf_t  *alcf;
 alcf = ngx_http_get_module_loc_conf(r, ngx_http_access_module);
 if (alcf->rules == NULL) {
 "access: %08XD %08XD %08XD",
 sin->sin_addr.s_addr, rule[i].mask, rule[i].addr);
 if ((sin->sin_addr.s_addr & rule[i].mask) == rule[i].addr) {
 if (rule[i].deny) {
-ngx_log_error(NGX_LOG_ERR, r->connection->log, 0,
+clcf = ngx_http_get_module_loc_conf(r, ngx_http_core_module);
-"access forbidden by rule");
+if (!clcf->satisfy_any) {
+ngx_log_error(NGX_LOG_ERR, r->connection->log, 0,
+"access forbidden by rule");
+}
 return NGX_HTTP_FORBIDDEN;
 }
 return NGX_OK;

Mercurial > hg > nginx

comparison src/http/modules/ngx_http_access_module.c @ 663:6d5c1535bb9d release-0.3.53