diff options
Diffstat (limited to 'ipa-server/xmlrpc-server/ipa.conf')
| -rw-r--r-- | ipa-server/xmlrpc-server/ipa.conf | 109 |
1 files changed, 0 insertions, 109 deletions
diff --git a/ipa-server/xmlrpc-server/ipa.conf b/ipa-server/xmlrpc-server/ipa.conf deleted file mode 100644 index 85b4543a..00000000 --- a/ipa-server/xmlrpc-server/ipa.conf +++ /dev/null @@ -1,109 +0,0 @@ -# -# VERSION 2 - DO NOT REMOVE THIS LINE -# -# LoadModule auth_kerb_module modules/mod_auth_kerb.so - -ProxyRequests Off - -# ipa-rewrite.conf is loaded separately - -# This is required so the auto-configuration works with Firefox 2+ -AddType application/java-archive jar - -<ProxyMatch ^.*/ipa/ui.*$$> - AuthType Kerberos - AuthName "Kerberos Login" - KrbMethodNegotiate on - KrbMethodK5Passwd off - KrbServiceName HTTP - KrbAuthRealms $REALM - Krb5KeyTab /etc/httpd/conf/ipa.keytab - KrbSaveCredentials on - Require valid-user - ErrorDocument 401 /ipa/errors/unauthorized.html - RewriteEngine on - Order deny,allow - Allow from all - - RequestHeader set X-Forwarded-Keytab %{KRB5CCNAME}e - - # RequestHeader unset Authorization -</ProxyMatch> - -# The URI's with a trailing ! are those that aren't handled by the proxy -ProxyPass /ipa/ui http://localhost:8080/ipa/ui -ProxyPassReverse /ipa/ui http://localhost:8080/ipa/ui - -# Configure the XML-RPC service -Alias /ipa/xml "/usr/share/ipa/ipaserver/XMLRPC" - -# This is where we redirect on failed auth -Alias /ipa/errors "/usr/share/ipa/html" - -# For the MIT Windows config files -Alias /ipa/config "/usr/share/ipa/html" - -<Directory "/usr/share/ipa/ipaserver"> - AuthType Kerberos - AuthName "Kerberos Login" - KrbMethodNegotiate on - KrbMethodK5Passwd off - KrbServiceName HTTP - KrbAuthRealms $REALM - Krb5KeyTab /etc/httpd/conf/ipa.keytab - KrbSaveCredentials on - Require valid-user - ErrorDocument 401 /ipa/errors/unauthorized.html - - SetHandler mod_python - PythonHandler ipaxmlrpc - - PythonDebug Off - - PythonOption IPADebug Off - - # this is pointless to use since it would just reload ipaxmlrpc.py - PythonAutoReload Off -</Directory> - -# Do no authentication on the directory that contains error messages -<Directory "/usr/share/ipa/html"> - AllowOverride None - Satisfy Any - Allow from all -</Directory> - -# Protect our CGIs -<Directory /var/www/cgi-bin> - AuthType Kerberos - AuthName "Kerberos Login" - KrbMethodNegotiate on - KrbMethodK5Passwd off - KrbServiceName HTTP - KrbAuthRealms $REALM - Krb5KeyTab /etc/httpd/conf/ipa.keytab - KrbSaveCredentials on - Require valid-user - ErrorDocument 401 /ipa/errors/unauthorized.html -</Directory> - -#Alias /ipatest "/usr/share/ipa/ipatest" - -#<Directory "/usr/share/ipa/ipatest"> -# AuthType Kerberos -# AuthName "Kerberos Login" -# KrbMethodNegotiate on -# KrbMethodK5Passwd off -# KrbServiceName HTTP -# KrbAuthRealms $REALM -# Krb5KeyTab /etc/httpd/conf/ipa.keytab -# KrbSaveCredentials on -# Require valid-user -# ErrorDocument 401 /ipa/errors/unauthorized.html -# -# SetHandler mod_python -# PythonHandler test_mod_python -# -# PythonDebug Off -# -#</Directory> |