diff options
Diffstat (limited to 'config/modules.conf')
-rw-r--r-- | config/modules.conf | 25 |
1 files changed, 4 insertions, 21 deletions
diff --git a/config/modules.conf b/config/modules.conf index 6b57d62b..9a483255 100644 --- a/config/modules.conf +++ b/config/modules.conf @@ -52,6 +52,10 @@ module = authn_denyall # # WARNING: this is a security setting, do not choose an option blindly. # +# For modules above that have a concept of groups, /etc/cobbler/acls.conf +# will be enforced after this module is applied. For those that do not +# have a concept of groups (authz_allowall) it will be ignored. +# # for more information: # https://fedorahosted.org/cobbler/wiki/CobblerWebInterface # https://fedorahosted.org/cobbler/wiki/CustomizableSecurity @@ -91,24 +95,3 @@ module = manage_bind [dhcp] module = manage_isc -# configures where ACL data is sourced from. access control -# lists govern what remote features a user can acess based -# on their username or group membership information. -# -# Note that usage of ACLs requires a choice of an authorization module -# that supports ACLs. authz_ownership is one example. An authorization -# module may refuse access based on other critiera /prior/ to consulting -# the access control list. Usage of ACLs with an authorzation module that -# does not support ACLs will have no effect. -# -# choices: -# acls_none -- returns a default ACL list allows all actions -# provided the authorization module does not -# reject access for other reasons (such as ownership) -# acls_configfile -- sources ACL information from /etc/cobbler/acls.conf -# further configuration is required in /etc/cobbler/acls.conf - -[acls] -module = acls_none - - |