libretic/ansible-role-reverse_proxy
7
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity

ldap admins

Browse source
This commit is contained in:
Olivier Navas 2022-03-13 00:07:26 +01:00
parent 8459cb207a
commit 0440d0b433
1 changed files with 9 additions and 9 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
templates/custom_reverse_proxy.conf
View file

@ -111,24 +111,24 @@ SecCookieFormat 0
Require ip 192.168.0.0/16
</Macro>
<Macro InternalAdminAccessPolicy>
Require ip 192.168.3.11/32
</Macro>
<Macro LDAPUserAccessPolicy>
Authname "Acces reserve aux utilisateurs disposant d'un compte valide"
Authname "Acces reserve aux utilisateurs disposant d'un compte valide (annuaire)"
Authtype Basic
AuthBasicProvider ldap
AuthLDAPBindAuthoritative on
AuthLDAPBindDN {{ reverse_proxy_ldap_bind_dn }}
AuthLDAPBindPassword {{ reverse_proxy_ldap_bind_password }}
AuthLDAPUrl ldap://{{ reverse_proxy_ldap_srv }}/{{ reverse_proxy_ldap_basedn }}?{{ reverse_proxy_ldap_userdn }}
Require valid-user
</Macro>
<Macro LDAPAdminAccessPolicy>
Authname "Acces reserve aux administrateurs"
Authname "Acces reserve aux administrateurs (annuaire)"
Authtype Basic
AuthBasicProvider ldap
AuthLDAPBindAuthoritative on
AuthLDAPBindDN {{ reverse_proxy_ldap_bind_dn }}
AuthLDAPBindPassword {{ reverse_proxy_ldap_bind_password }}
AuthLDAPUrl ldap://{{ reverse_proxy_ldap_srv }}/{{ reverse_proxy_ldap_basedn }}?{{ reverse_proxy_ldap_userdn }}
Require valid-user
Require ldap-user {{ reverse_proxy_ldap_admins }}
@ -213,7 +213,7 @@ SecCookieFormat 0
<Location "/balancer-manager">
SecRuleEngine off
SetHandler balancer-manager
Use InternalAdminAccessPolicy
Use InternalAccessPolicy
</Location>
# Configuration du chemin vers les ressources reverse proxy
<Location "/rp_ressources">
@ -380,12 +380,12 @@ Listen 9090 http
DocumentRoot /var/www/html/
<Location /server-info>
SetHandler server-info
Use InternalAdminAccessPolicy
Use InternalAccessPolicy
Require host localhost
</Location>
<Location /status>
SetHandler server-status
Use InternalAdminAccessPolicy
Use InternalAccessPolicy
Require host localhost
</Location>
LogLevel info