From 3ac8ca7868ade978a3d0fc74113f3276e5c183ec Mon Sep 17 00:00:00 2001 From: jsdelfino Date: Sun, 18 Dec 2011 20:19:11 +0000 Subject: Add ability to configure an HTTPS proxy with load balancing over a set of HTTP backend servers and get OAuth authentication working with that topology. git-svn-id: http://svn.us.apache.org/repos/asf/tuscany@1220526 13f79535-47bb-0310-9956-ffa450edef68 --- sca-cpp/trunk/modules/http/httpd-conf | 103 +++++++++++++++++++++------------- 1 file changed, 63 insertions(+), 40 deletions(-) (limited to 'sca-cpp/trunk/modules/http/httpd-conf') diff --git a/sca-cpp/trunk/modules/http/httpd-conf b/sca-cpp/trunk/modules/http/httpd-conf index 5d4e9f5485..e7f191ba48 100755 --- a/sca-cpp/trunk/modules/http/httpd-conf +++ b/sca-cpp/trunk/modules/http/httpd-conf @@ -114,29 +114,9 @@ Require all denied # Configure authentication +Include conf/noauth.conf Include conf/auth.conf - -# Allow access to public locations - -AuthType None -Require all granted - - -AuthType None -Require all granted - - -AuthType None -Require all granted - - -AuthType None -Require all granted - - -AuthType None -Require all granted - +Include conf/pubauth.conf # Configure output filters to enable compression and rate limiting @@ -165,21 +145,6 @@ RewriteRule .* http://$host$pportsuffix%{REQUEST_URI} [R] Include conf/svhost.conf - -# Allow access to document root - -Options FollowSymLinks -AuthType None -Require all granted - - -# Allow access to root location - -Options FollowSymLinks -AuthType None -Require all granted - - EOF @@ -245,6 +210,7 @@ LoadModule logio_module ${modules_prefix}/modules/mod_logio.so LoadModule usertrack_module ${modules_prefix}/modules/mod_usertrack.so LoadModule vhost_alias_module ${modules_prefix}/modules/mod_vhost_alias.so LoadModule cgi_module ${modules_prefix}/modules/mod_cgi.so +LoadModule actions_module ${modules_prefix}/modules/mod_actions.so LoadModule unixd_module ${modules_prefix}/modules/mod_unixd.so LoadModule session_module ${modules_prefix}/modules/mod_session.so LoadModule session_crypto_module ${modules_prefix}/modules/mod_session_crypto.so @@ -261,7 +227,7 @@ EOF # Generate auth configuration cat >$root/conf/auth.conf < @@ -273,13 +239,50 @@ Require all granted Options FollowSymLinks AuthUserFile "$root/conf/httpd.passwd" +AuthGroupFile "$root/conf/httpd.groups" Require all granted -# Mark login page with a header +EOF + +cat >$root/conf/pubauth.conf < +AuthType None +Require all granted +# Mark login page with a header Header set X-Login open-auth + +AuthType None +Require all granted + + +AuthType None +Require all granted + + +AuthType None +Require all granted + + +AuthType None +Require all granted + + +# Allow the server admin to view the server status and info + +SetHandler server-status +HostnameLookups on +Require user admin + + + +SetHandler server-info +HostnameLookups on +Require user admin + EOF @@ -292,6 +295,26 @@ cat >$root/conf/httpd.groups <$root/conf/noauth.conf < +AuthType None +Require all granted + + +# Allow everyone to access root location + +AuthType None +Require all granted + + +EOF + # Generate vhost configuration cat >$root/conf/vhost.conf <