-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathadfs.conf
60 lines (55 loc) · 1.82 KB
/
adfs.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
# Place me in /etc/apache2/sites-enabled/
#MellonDiagnosticsEnable On
#MellonDiagnosticsFile /tmp/mellon_diagnostics
MellonCacheSize 100
MellonLockFile /var/run/mod_auth_mellon.lock
MellonPostTTL 900
MellonPostSize 1073741824
MellonPostCount 100
MellonPostDirectory "/var/cache/mod_auth_mellon_postdata"
<Location />
MellonEnable "info"
ErrorDocument 401 "<html><body>You are not corrently logged in. Please <a href='/login'>login</a></body></html>"
MellonSPentityId https://icinga2.example.com/icinga2
MellonSignatureMethod rsa-sha256
MellonSPCertFile /etc/ssl/certs/icinga2.example.com_saml_sp.crt
MellonSPPrivateKeyFile /etc/ssl/private/icinga2.example.com_saml_sp.key
MellonSPMetadataFile /etc/apache2/mellon/icinga2.example.com.xml
MellonIdPMetadataFile /etc/apache2/mellon/idp-metadata.xml
Require valid-user
AuthType "Mellon"
MellonEnable "info"
MellonVariable "cookie"
MellonSecureCookie On
MellonCookiePath /
MellonEndpointPath /mellon
MellonDefaultLoginPath "/"
</Location>
<Location /locallogin>
Satisfy Any
Allow from all
</Location>
<Location /login>
# This location will trigger an authentication request to the IdP.
<If "%{HTTP_COOKIE} =~ /locallogin=yes/">
AuthType Basic
AuthName "Icinga Web 2"
AuthUserFile /etc/icingaweb2/.http-users
Require valid-user
</If>
<Else>
MellonEnable "auth"
</Else>
</Location>
<Location /icingaweb2>
# This location will trigger an authentication request to the IdP.
<If "%{HTTP_COOKIE} =~ /locallogin=yes/">
AuthType Basic
AuthName "Icinga Web 2"
AuthUserFile /etc/icingaweb2/.http-users
Require valid-user
</If>
<Else>
MellonEnable "auth"
</Else>
</Location>