Results 1 to 2 of 2
|
Enjoy an ad free experience by logging in. Not a member yet? Register.
|
|
-
09-30-2011 #1
- Join Date
- Oct 2010
- Posts
- 2
Apache multiple user locations / Authentification & Authorization
Postby raffis » 2011-09-27 06:55
Hi
I have a webdav server with 1000 and more users. Every user has an own Apache config for his directory:
Code:<Directory "/srv/data/webdav/kkn/username" > Options Indexes FollowSymLinks AllowOverride None order allow,deny allow from all AuthName "server authentification" AuthType basic AuthLDAPURL ldap://192.168.100.2/o=yx,dc=xx,dc=yy?uid AuthBasicProvider ldap DAV On require valid-user require ldap-attribute uid=username </Directory>
But this solution is so stupid, is there any better way?
My Idea:
Code: Select all
Code:RewriteEngine On RewriteCond $1 ^$ RewriteCond %{REMOTE_USER} ^([a-z0-9_]+)$ RewriteRule (.*) /davdirectories/%1 [L]
This works to forward a user in his dav directory, but if he knows another users name he can just enter the name of the other user in the URL an he
has full access...
Maybe a solution with DirectoryMach or something else, any ideas?
Also following problem, If I defined an Auth Alias with LDAP Master and Slave Server. But I can't use authorization directives such require ldap-attribute memberUid.... or require ldap-user ....
Is there another solution for authorization checks with ldap master/slave servers..?
Thanks
-
02-02-2012 #2
- Join Date
- Oct 2010
- Posts
- 2
still a problem, no solution?
With another Webserver? nginx, lighttpd ...