WebAuth 3.2.1 Announcement
The ITSS WebAuth team is pleased to announce Stanford WebAuth 3.2.1, a bug fix release. This release fixes problems with backward compatibility support, adds a new directive to allow applications to deal with tokens expiring during POST, and fixes problems with re-establishing connections to an LDAP server after a timeout.
For documentation and downloads of WebAuth 3.2.1, see:
Pre-built binaries are, as before, available only for Solaris 8 and 9 at this time.
The user-visible changes in this release are:
When AuthType is StanfordAuth, don't default to WebAuthDontCache. This appears to break IE 6.0 downloads.
Add WebAuthPostReturnURL directive to allow an app to deal with handling a POST that didn't have authentication.
When operating in legacy mode, only check LDAP for a group if it contains a colon. Otherwise, defer to Apache's normal group handling. This fixes handling of user-defined groups in .htaccess files when backward compatibility is turned on.
When a call to the LDAP server fails, try binding again and retrying the call before actually failing. The connection may have timed out or something else may have temporarily gone wrong. This will help with error messages about the LDAP server not being available.
Fix the setting of the interactive flag on S/Ident queries in the WebKDC.
Corrected handling of successful S/Ident calls returning errors in mod_webkdc when debugging is turned off.