logo
Apache Lounge
Webmasters

 

About Forum Index Downloads Search Register Log in RSS X


Keep Server Online

If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.

or

Bitcoin

A donation makes a contribution towards the costs, the time and effort that's going in this site and building.

Thank You! Steffen

Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
Post new topic   Forum Index -> Apache View previous topic :: View next topic
Reply to topic   Topic: Two levels authtentication / authorization
Author
ayashi



Joined: 04 Sep 2018
Posts: 2
Location: France
PostPosted: Tue 04 Sep '18 19:31    Post subject: Two levels authtentication / authorization Reply with quote
Hi,

I have an issue with the following configuration :

Code:
 <Location "/Produits/baomdpldap">
  AddDefaultCharset Off
  AuthType CAS
  AuthName "MyCompany CAS"
  <RequireAny>
   Require valid-user
  </RequireAny>
 </Location>

 <Location "/">
  AuthType CAS
  AuthName "MyCompany CAS"
  AuthLDAPURL ldap://xxx
  AuthLDAPBindDN "xxx"
  AuthLDAPBindPassword "xxx"
  <RequireAny>
   Require ldap-attribute appli="intra_utili"
  </RequireAny>
 </Location>


Permissions at the root are most aggressive as we authenticate and authorize with LDAP. This is working as expected.

Permissions at the "/Produits/baomdpldap" only require a valid user.

When I try to access the "/Produits/baomdpldap" folder, the LDAP check is always performed. I need to find a way to prevent it and only apply what is defined in the sub-level location.

Any help would be appreciated.
Back to top
ayashi



Joined: 04 Sep 2018
Posts: 2
Location: France
PostPosted: Wed 05 Sep '18 9:12    Post subject: Reply with quote
Forgot to tell you that I have ProxyPass directives for both locations.

I've tried many things and my conclusion is that I have to use different orders to write my Location and ProxyPass tag.

This is working the Following way :

Code:
<Location "/"> </Location>
<Location "/Produits/baomdpldap"> </Location>

ProxyPass "/Produits/baomdpldap"
ProxyPass "/"


But not this way :

Code:
<Location "/Produits/baomdpldap"> </Location>
<Location "/"> </Location>

ProxyPass "/Produits/baomdpldap"
ProxyPass "/"
Back to top


Reply to topic   Topic: Two levels authtentication / authorization View previous topic :: View next topic
Post new topic   Forum Index -> Apache