You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by "Foster, Stephen (ASPIRE)" <st...@hmrcaspire.com> on 2009/10/13 18:49:10 UTC

[users@httpd] Authorisation using LDAP

 

 

Hi there,

I'm wanting to configure apache to provide authorisation using LDAP, my
users already authenticate via another method so I only want to
authorize access if the user belongs to a particular group or role. And
I want to apply this access to both static content in my DocumentRoot
and also to allow the users to then be proxied onwards. Does anyone have
any examples of configuration for providing authorisation only, all
examples I have found related to authentication and then authorization
and I can't get it to work.

 

Cheers in advance

 

Steve


Capgemini is a trading name used by the Capgemini Group of companies which includes Capgemini UK plc, a company registered in England and Wales (number 943935) whose registered office is at No. 1 Forge End, Woking, Surrey, GU21 6DB.
This message contains information that may be privileged or confidential and is the property of the Capgemini Group. It is intended only for the person to whom it is addressed. If you are not the intended recipient, you are not authorized to read, print, retain, copy, disseminate, distribute, or use this message or any part thereof. If you receive this message in error, please notify the sender immediately and delete all copies of this message.

Re: [users@httpd] Authorisation using LDAP

Posted by Devraj Mukherjee <de...@gmail.com>.

Hi Stephen,

What you describe can be handled by
http://httpd.apache.org/docs/2.0/mod/mod_auth_ldap.html

and a combination of Location tags if you want your authentication to
be fine grained.


On Wed, Oct 14, 2009 at 3:49 AM, Foster, Stephen (ASPIRE)
<st...@hmrcaspire.com> wrote:
>
>
>
>
> Hi there,
>
> I’m wanting to configure apache to provide authorisation using LDAP, my
> users already authenticate via another method so I only want to authorize
> access if the user belongs to a particular group or role. And I want to
> apply this access to both static content in my DocumentRoot and also to
> allow the users to then be proxied onwards. Does anyone have any examples of
> configuration for providing authorisation only, all examples I have found
> related to authentication and then authorization and I can’t get it to work.
>
>
>
> Cheers in advance
>
>
>
> Steve
>
> Capgemini is a trading name used by the Capgemini Group of companies which
> includes Capgemini UK plc, a company registered in England and Wales (number
> 943935) whose registered office is at No. 1 Forge End, Woking, Surrey, GU21
> 6DB.
>
> This message contains information that may be privileged or confidential and
> is the property of the Capgemini Group. It is intended only for the person
> to whom it is addressed. If you are not the intended recipient, you are not
> authorized to read, print, retain, copy, disseminate, distribute, or use
> this message or any part thereof. If you receive this message in error,
> please notify the sender immediately and delete all copies of this message.



-- 
"The secret impresses no-one, the trick you use it for is everything"
- Alfred Borden (The Prestiege)

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org