I've verified by inspection of the Apache httpd Git repository and their bug database that staring in 2.4.x, authn handlers are indeed expected to ensure that $r->user is set. This comment sums it up:
https://bz.apache.org/bugzilla/show_bug.cgi?id=42995#c9
I've verified by inspection of the Apache httpd Git repository and their bug database that staring in 2.4.x, authn handlers are indeed expected to ensure that $r->user is set. This comment sums it up:
https:/ /bz.apache. org/bugzilla/ show_bug. cgi?id= 42995#c9