mirror of
https://bitbucket.org/jsuto/piler.git
synced 2024-12-25 09:10:12 +01:00
f71146685d
Signed-off-by: Janos SUTO <sj@acts.hu>
59 lines
2.5 KiB
ApacheConf
59 lines
2.5 KiB
ApacheConf
DirectoryIndex index.php
|
|
|
|
RewriteEngine On
|
|
RewriteRule ^search.php /index.php?route=search/search&type=simple [L]
|
|
RewriteRule ^advanced.php /index.php?route=search/search&type=advanced [L]
|
|
RewriteRule ^expert.php /index.php?route=search/search&type=expert [L]
|
|
RewriteRule ^search-helper.php /index.php?route=search/helper [L]
|
|
RewriteRule ^audit-helper.php /index.php?route=audit/helper [L]
|
|
RewriteRule ^message.php /index.php?route=message/view [L]
|
|
RewriteRule ^bulkrestore.php /index.php?route=message/bulkrestore [L]
|
|
RewriteRule ^bulkremove.php /index.php?route=message/bulkremove [L]
|
|
RewriteRule ^rejectremove.php /index.php?route=message/rejectremove [L]
|
|
RewriteRule ^bulkpdf.php /index.php?route=message/bulkpdf [L]
|
|
RewriteRule ^folders.php /index.php?route=folder/list& [QSA,L]
|
|
RewriteRule ^settings.php /index.php?route=user/settings [L]
|
|
RewriteRule ^login.php /index.php?route=login/login [L]
|
|
RewriteRule ^logout.php /index.php?route=login/logout [L]
|
|
RewriteRule ^google.php /index.php?route=login/google [QSA,L]
|
|
RewriteRule ^domain.php /index.php?route=domain/domain [QSA,L]
|
|
RewriteRule ^ldap.php /index.php?route=ldap/list [QSA,L]
|
|
RewriteRule ^customer.php /index.php?route=customer/list [QSA,L]
|
|
RewriteRule ^retention.php /index.php?route=policy/retention [QSA,L]
|
|
RewriteRule ^archiving.php /index.php?route=policy/archiving [QSA,L]
|
|
RewriteRule ^legalhold.php /index.php?route=policy/legalhold [QSA,L]
|
|
RewriteRule ^view/javascript/piler.js /js.php [QSA,L]
|
|
|
|
<IfModule auth_ntlm_winbind_module>
|
|
<FilesMatch "sso\.php$">
|
|
AuthName "piler NTLM authentication"
|
|
NTLMAuth on
|
|
NTLMAuthHelper "/usr/bin/ntlm_auth --helper-protocol=squid-2.5-ntlmssp"
|
|
NTLMBasicAuthoritative on
|
|
AuthType NTLM
|
|
require valid-user
|
|
</FilesMatch>
|
|
</IfModule>
|
|
|
|
<IfModule auth_gssapi_module>
|
|
# ktpass -princ HTTP/<webserver-fqdn>@<WINDOWS AD DOMAIN IN CAPITALS> \
|
|
# -mapuser <ldap helper user>@<WINDOWS AD DOMAIN IN CAPITALS> \
|
|
# -pass * \
|
|
# -crypto AES256-SHA1 \
|
|
# -ptype KRB5_NT_PRINCIPAL \
|
|
# -out /etc/krb5/http.keytab \
|
|
#
|
|
# setspn -s HTTP/<webserver-fqdn> <ldap helper user>
|
|
|
|
<FilesMatch "sso\.php$">
|
|
RewriteEngine on
|
|
RewriteCond %{HTTP:Authorization} !^$
|
|
RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization},L]
|
|
AuthName "User with domain part (separated by @) in CAPITALS - e.g. 'user@DOMAIN'"
|
|
AuthType GSSAPI
|
|
GssapiBasicAuth On
|
|
GssapiCredStore keytab:/etc/krb5/http.keytab
|
|
Require valid-user
|
|
</FilesMatch>
|
|
</IfModule>
|