Re: [icinga-users] Icinga-web authentication

Wed, 19 Jan 2011 07:13:43 -0800 

Hey Joseph,

you can configure icinga-web to use http-basic authentification, provided by 
the webserver.

Therefor you have to edit the auth.xml, normally located in: 
/usr/local/icinga-web/app/modules/AppKit/config/ !


Here is an example on how it works in my environment with apache2:
(Icinga-web creates a user-account, if the authenticated user doen't have it.)


               <ae:parameter name="http-basic-authentication">

                       <ae:parameter name="auth_module">AppKit</ae:parameter>

                       <ae:parameter 
name="auth_provider">Auth.Provider.HTTPBasicAuthentication</ae:parameter>



                       <!--



                               HTTPBasicAuth allows authentication requests 
made by

                               the webserver. To enable the provider please:



                               * Activate the whole thing by setting 
auth_enable to true

                               * Allow authenticate requests, set 
auth_authoritative true

                       -->



                       <ae:parameter name="auth_enable">true</ae:parameter>

                       <ae:parameter 
name="auth_authoritative">true</ae:parameter>



                       <!--

                               This provider can create dummy users

                           * Not really a good idea, let other providers to for 
you

                           * Or create the user manually

                       -->

                       <!-- <ae:parameter 
name="auth_create">true</ae:parameter> -->



                       <!-- Fields to search for the username -->

                       <ae:parameter 
name="http_uservar">REMOTE_USER,PHP_AUTH_USER</ae:parameter>



                       <!-- Field to search for the authtype -->

                       <ae:parameter 
name="http_typevar">AUTH_TYPE</ae:parameter>



                       <!-- Source for the data (_SERVER == $_SERVER == 'only 
one') -->

                       <ae:parameter name="http_source">_SERVER</ae:parameter>

               </ae:parameter>


Kind regards,
Marco


Von: Joseph L. Casale [mailto:[email protected]]
Gesendet: Mittwoch, 19. Januar 2011 15:49
An: '[email protected]'
Betreff: [icinga-users] Icinga-web authentication

Is there any way to have Icinga-web use the username provided by
apache without authenticating?

Thanks!
jlc

------------------------------------------------------------------------------
Protect Your Site and Customers from Malware Attacks
Learn about various malware tactics and how to avoid them. Understand 
malware threats, the impact they can have on your business, and how you 
can protect your company and customers by using code signing.
http://p.sf.net/sfu/oracle-sfdevnl
_______________________________________________
icinga-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/icinga-users

Reply via email to