FreedomBox/data/etc/apache2/conf-available/tt-rss-plinth.conf

##
## On all sites, provide Tiny Tiny RSS on a default path: /tt-rss
## Allow all valid LDAP users.
##
Alias /tt-rss /usr/share/tt-rss/www
Alias /tt-rss-app /usr/share/tt-rss/www

<Location /tt-rss>
    Include includes/freedombox-single-sign-on.conf
    <IfModule mod_auth_pubtkt.c>
        TKTAuthToken "feed-reader" "admin"
    </IfModule>
</Location>

<Location /tt-rss-app>
    Include includes/freedombox-auth-ldap.conf
    Require valid-user
    # TODO Restrict access to `feed-reader` group
</Location>