Re: mod_auth_pgsql

On Fri, Sep 13, 2002 at 01:21:57PM -0700, Joey M wrote:
> Hey,
>
> I've set up mod_auth_pgsql several times successfully, but for some reason I
> keep getting a "password mismatch" error on my latest install when I try to
> log in to my protected site.
>
> I'm running postgresql 7.2.2, apache 1.3.26 on FreeBSD 4.6.2.  The version of
> mod_auth_pgsql I built into apache is 0.9.12.
>
> This is what my schema and current data look like:
>
> CREATE TABLE users (
>         username CHAR(25) PRIMARY KEY,
>         password CHAR(25) NOT NULL
> );
Are You using MD5 or crypt? I'm using crypt and had to change the
size of the "password" field to char(13) to get this working.

> INSERT INTO users (username, password) VALUES ('ssmith', 'abc');
This seems You try using cleartext passwords, but this must enabled
in the apache config file (default is encrypted).

But in general IMHO there is a problem in password comparsion in
mod_auth_pgsql (trailing whitspace - maybe i'm wrong):
"abc" != "abc                      "

Hope, this helps.  Greetings,
-tb
--
Thomas Beutin                             tb@laokoon.IN-Berlin.DE
Beam me up, Scotty. There is no intelligent live down in Redmond.