summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJan Pazdziora <jpazdziora@redhat.com>2014-01-08 03:14:52 -0500
committerJan Pazdziora <jpazdziora@redhat.com>2014-01-08 03:14:52 -0500
commitdcee5483997bdc1897131a0057030228b0890f8c (patch)
tree8b1e1f7ae3ed55252ebd9178792630664bb59cdb
parentd5c2d76b7e873ab05f179c32b1140743e3e672e0 (diff)
downloadCGI-sessions-negotiate.zip
CGI-sessions-negotiate.tar.gz
CGI-sessions-negotiate.tar.xz
Add Kerberos authentication on /application/login, redirects to /application/login2 to show the form if it fails.negotiate
-rw-r--r--auth_kerb.conf14
1 files changed, 14 insertions, 0 deletions
diff --git a/auth_kerb.conf b/auth_kerb.conf
new file mode 100644
index 0000000..70b65a6
--- /dev/null
+++ b/auth_kerb.conf
@@ -0,0 +1,14 @@
+
+LoadModule auth_kerb_module modules/mod_auth_kerb.so
+
+<Location /application/login>
+ AuthType Kerberos
+ AuthName "Kerberos Login"
+ KrbMethodNegotiate On
+ KrbMethodK5Passwd Off
+ KrbAuthRealms EXAMPLE.COM
+ Krb5KeyTab /etc/http.keytab
+ require valid-user
+ ErrorDocument 401 '<html><meta http-equiv="refresh" content="0; URL=/application/login2"><body>Kerberos authentication did not pass.</body></html>'
+</Location>
+