projects / cascardo / ipsilon.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Add sample apache configuration
[cascardo/ipsilon.git] / examples / apache.conf
diff --git a/examples/apache.conf b/examples/apache.conf
new file mode 100644 (file)
index 0000000..1347916
--- /dev/null
+++ b/examples/apache.conf
@@ -0,0 +1,26 @@
+Alias /idp/ui /var/www/idp/ipsilon/ui
+WSGIScriptAlias /idp /var/www/idp/ipsilon/ipsilon/idpserver.py
+WSGIDaemonProcess idp python-path=/var/www/idp/ipsilon/ipsilon home=/var/www/idp/ipsilon/ipsilon maximum-requests=2 user=ipsilon group=ipsilon
+WSGIProcessGroup idp
+
+<Location /idp/login/krb/negotiate>
+  AuthType Kerberos
+  AuthName "Kerberos Login"
+  KrbMethodNegotiate on
+  KrbMethodK5Passwd off
+  KrbServiceName HTTP
+  KrbAuthRealms IPA.DEV.LAN
+  Krb5KeyTab /etc/httpd/conf/http.keytab
+  KrbSaveCredentials off
+  KrbConstrainedDelegation off
+  KrbLocalUserMapping On
+  Require valid-user
+
+  ErrorDocument 401 /idp/login/krb/unauthorized
+</Location>
+
+<Directory /idp>
+    Order allow,deny
+    Allow from all
+</Directory>
+
Unnamed repository; edit this file 'description' to name the repository.