TheGU / mod-auth-token

This module uses token based authentication to secure downloads and prevent deep-linking. Have your script or servlet generate a token to authenticate the download and let Apache handle the file transfer without having to pipe it through a script for security.
Apache License 2.0
0 stars 0 forks source link

Every request appears in error-log when IP limitation is on #36

Open GoogleCodeExporter opened 9 years ago

GoogleCodeExporter commented 9 years ago
What steps will reproduce the problem?
1. Turn AuthTokenLimitByIp on
2. Make requests to protected files
3. Watch the error log

What is the expected output? What do you see instead?
--> I do not expect every request to be logged as error ("polluting" the error 
log). Especially for environments with many hits to protected files this makes 
logfiles very large and makes it hard to find real errors in the log.

What version of the product are you using? On what operating system?
--> 1.0.6-beta or SVN version on Debian Squeeze. 

Please provide any additional information below.
--> The problem is mod_auth_token.c, line 159 
(http://code.google.com/p/mod-auth-token/source/browse/trunk/mod_auth_token.c#15
9) - this always logs requests with conf->checkip enabled with an error 
log-level, even if there is no error, like this:

[Sat Sep 01 00:01:46 2012] [warn] [client 1.2.3.4] mod_auth_token: request from 
ip 1.2.3.4, referer: https://www.example.com

I do not know if it's possible to use a lower log-level - otherwise I'd suggest 
to completely remove this log call.

Original issue reported on code.google.com by rkallensee on 10 Sep 2012 at 9:37