Joseph Nuthalpati 995365f3df
Add SSO using auth_pubtkt for 3 web apps
- Install mod_auth_pubtkt and generate public/private key-pair.

- Redirect user to login page if no cookie is presented.

- Add check for authenticated user for login page.

- Temporarily switched to DSA because of a bug in mod_auth_pubtkt
  which causes it to accept only DSA and not RSA. Also had to use SHA1
  instead of SHA256.

- Enabled SSO for Syncthing, Repro and TT-RSS.

- Using tokens to authorize by user groups.

- Generate keys during first boot.
2017-06-03 10:29:42 -04:00

10 lines
255 B
Plaintext

##
## On all sites, provide repro admin interface on a path: /repro
## Only allow users of admin LDAP group.
##
<Location /repro>
ProxyPass http://localhost:5080
Include includes/freedombox-single-sign-on.conf
TKTAuthToken "admin"
</Location>