Apache multiple user locations / Authentification & Authorization

[raffis]

Apache multiple user locations

Postby raffis » 2011-09-27 06:55
Hi

I have a webdav server with 1000 and more users. Every user has an own Apache config for his directory:

Code:

    <Directory "/srv/data/webdav/kkn/username" >
    Options Indexes FollowSymLinks
    AllowOverride None
    order allow,deny
    allow from all
    AuthName "server authentification"
    AuthType basic
    AuthLDAPURL          ldap://192.168.100.2/o=yx,dc=xx,dc=yy?uid
    AuthBasicProvider    ldap
    DAV On
    require valid-user
    require ldap-attribute uid=username
    </Directory>

But this solution is so stupid, is there any better way?

My Idea:

Code: Select all

Code:

    RewriteEngine On
    RewriteCond $1 ^$
    RewriteCond %{REMOTE_USER} ^([a-z0-9_]+)$
    RewriteRule (.*) /davdirectories/%1 [L]

This works to forward a user in his dav directory, but if he knows another users name he can just enter the name of the other user in the URL an he
has full access...

Maybe a solution with DirectoryMach or something else, any ideas?



Also following problem, If I defined an Auth Alias with LDAP Master and Slave Server. But I can't use authorization directives such require ldap-attribute memberUid.... or require ldap-user ....
Is there another solution for authorization checks with ldap master/slave servers..?


Thanks

[raffis]

still a problem, no solution?

With another Webserver? nginx, lighttpd ...