ldap admins
This commit is contained in:
Olivier Navas
parent
8459cb207a
commit
0440d0b433
1 changed files with 9 additions and 9 deletions
|
|
@ -111,24 +111,24 @@ SecCookieFormat 0
|
||||||
Require ip 192.168.0.0/16
|
Require ip 192.168.0.0/16
|
||||||
</Macro>
|
</Macro>
|
||||||
|
|
||||||
<Macro InternalAdminAccessPolicy>
|
|
||||||
Require ip 192.168.3.11/32
|
|
||||||
</Macro>
|
|
||||||
|
|
||||||
<Macro LDAPUserAccessPolicy>
|
<Macro LDAPUserAccessPolicy>
|
||||||
Authname "Acces reserve aux utilisateurs disposant d'un compte valide"
|
Authname "Acces reserve aux utilisateurs disposant d'un compte valide (annuaire)"
|
||||||
Authtype Basic
|
Authtype Basic
|
||||||
AuthBasicProvider ldap
|
AuthBasicProvider ldap
|
||||||
AuthLDAPBindAuthoritative on
|
AuthLDAPBindAuthoritative on
|
||||||
|
AuthLDAPBindDN {{ reverse_proxy_ldap_bind_dn }}
|
||||||
|
AuthLDAPBindPassword {{ reverse_proxy_ldap_bind_password }}
|
||||||
AuthLDAPUrl ldap://{{ reverse_proxy_ldap_srv }}/{{ reverse_proxy_ldap_basedn }}?{{ reverse_proxy_ldap_userdn }}
|
AuthLDAPUrl ldap://{{ reverse_proxy_ldap_srv }}/{{ reverse_proxy_ldap_basedn }}?{{ reverse_proxy_ldap_userdn }}
|
||||||
Require valid-user
|
Require valid-user
|
||||||
</Macro>
|
</Macro>
|
||||||
|
|
||||||
<Macro LDAPAdminAccessPolicy>
|
<Macro LDAPAdminAccessPolicy>
|
||||||
Authname "Acces reserve aux administrateurs"
|
Authname "Acces reserve aux administrateurs (annuaire)"
|
||||||
Authtype Basic
|
Authtype Basic
|
||||||
AuthBasicProvider ldap
|
AuthBasicProvider ldap
|
||||||
AuthLDAPBindAuthoritative on
|
AuthLDAPBindAuthoritative on
|
||||||
|
AuthLDAPBindDN {{ reverse_proxy_ldap_bind_dn }}
|
||||||
|
AuthLDAPBindPassword {{ reverse_proxy_ldap_bind_password }}
|
||||||
AuthLDAPUrl ldap://{{ reverse_proxy_ldap_srv }}/{{ reverse_proxy_ldap_basedn }}?{{ reverse_proxy_ldap_userdn }}
|
AuthLDAPUrl ldap://{{ reverse_proxy_ldap_srv }}/{{ reverse_proxy_ldap_basedn }}?{{ reverse_proxy_ldap_userdn }}
|
||||||
Require valid-user
|
Require valid-user
|
||||||
Require ldap-user {{ reverse_proxy_ldap_admins }}
|
Require ldap-user {{ reverse_proxy_ldap_admins }}
|
||||||
|
|
@ -213,7 +213,7 @@ SecCookieFormat 0
|
||||||
<Location "/balancer-manager">
|
<Location "/balancer-manager">
|
||||||
SecRuleEngine off
|
SecRuleEngine off
|
||||||
SetHandler balancer-manager
|
SetHandler balancer-manager
|
||||||
Use InternalAdminAccessPolicy
|
Use InternalAccessPolicy
|
||||||
</Location>
|
</Location>
|
||||||
# Configuration du chemin vers les ressources reverse proxy
|
# Configuration du chemin vers les ressources reverse proxy
|
||||||
<Location "/rp_ressources">
|
<Location "/rp_ressources">
|
||||||
|
|
@ -380,12 +380,12 @@ Listen 9090 http
|
||||||
DocumentRoot /var/www/html/
|
DocumentRoot /var/www/html/
|
||||||
<Location /server-info>
|
<Location /server-info>
|
||||||
SetHandler server-info
|
SetHandler server-info
|
||||||
Use InternalAdminAccessPolicy
|
Use InternalAccessPolicy
|
||||||
Require host localhost
|
Require host localhost
|
||||||
</Location>
|
</Location>
|
||||||
<Location /status>
|
<Location /status>
|
||||||
SetHandler server-status
|
SetHandler server-status
|
||||||
Use InternalAdminAccessPolicy
|
Use InternalAccessPolicy
|
||||||
Require host localhost
|
Require host localhost
|
||||||
</Location>
|
</Location>
|
||||||
LogLevel info
|
LogLevel info
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue