Project

General

Profile

Bug #2947

Why read data prior to authorization

Added by saraliu 1 day ago. Updated about 14 hours ago.

Status:
Invalid
Priority:
Normal
Assignee:
-
Category:
mod_auth
Target version:
Start date:
2019-04-17
Due date:
% Done:

0%

Estimated time:
Missing in 1.5.x:

Description

There is a issue that happened in our test.

We want to upload a file(40M) to our device,we using post method,we found the web server will read the request and file first,when file read over,then do authorization(mod_auth.c),Why read file prior to authorization check?Does this have some specials reason?

Could we read request header first and then do auth check,if auth successfully,let CGI to read the file data,but if auth failed no need read file?

Thanks.

History

#1

Updated by gstrauss about 16 hours ago

  • Status changed from New to Invalid

Hi. "How do I?" That sounds like a question. Please ask questions in the Forums.

#2

Updated by saraliu about 14 hours ago

I have post this issue in the forums,Thanks

https://redmine.lighttpd.net/boards/2/topics/8568

Also available in: Atom