Univention Bugzilla – Full Text Bug Listing |
Summary: | Allow inclusion of additional configuration files for SSO virtualhost | ||
---|---|---|---|
Product: | UCS | Reporter: | Erik Damrose <damrose> |
Component: | SAML | Assignee: | Erik Damrose <damrose> |
Status: | CLOSED FIXED | QA Contact: | Jürn Brodersen <brodersen> |
Severity: | normal | ||
Priority: | P5 | CC: | best |
Version: | UCS 4.3 | ||
Target Milestone: | UCS 4.3-3-errata | ||
Hardware: | Other | ||
OS: | Linux | ||
What kind of report is it?: | Feature Request | What type of bug is this?: | --- |
Who will be affected by this bug?: | --- | How will those affected feel about the bug?: | --- |
User Pain: | Enterprise Customer affected?: | ||
School Customer affected?: | ISV affected?: | ||
Waiting Support: | Flags outvoted (downgraded) after PO Review: | ||
Ticket number: | Bug group (optional): | ||
Max CVSS v3 score: |
Description
Erik Damrose
2018-12-13 15:25:48 CET
fc58260b Include additional configuration files from /etc/apache2/sso-vhost.conf.d in saml virtualhost config Package: univention-saml Version: 5.0.4-30A~4.3.0.201812131559 Branch: ucs_4.3-0 Scope: errata4.3-3 9138d5a2 yaml 4a2cd9dbbc Bug #48348: univention-saml 5.0.4-30A~4.3.0.201812131559--- doc/errata/staging/univention-saml.yaml | 7 +++---- 1 file changed, 3 insertions(+), 4 deletions(-) This update addresses the following [-issue(s):-]{+issue:+} * The univention-saml [-apache2-]{+Apache2+} VirtualHost configuration can now be extended by placing .conf files in the directory /etc/apache2/sso-vhost.conf.d/ Including sso-vhost.conf.d/*.conf into the non vhost config (the fqdn instead of ucs-sso is used for saml) might be a problem for some options. But I don't see an easy solution for that nor is it a problem at the moment. Config used for testing: ''' <Location "/secure"> AuthType basic AuthName "private area" AuthUserFile "/etc/apache2/test" Require valid-user </Location> ''' What I tested: Added config to /etc/apache2/sso-vhost.conf.d and restart apache -> OK "curl http://ucs-sso.univention.intranet/secure" asks for creds -> OK "curl https://ucs-sso.univention.intranet/secure" asks for creds -> OK ucs-test/82_saml/04_saml_login -> OK Removed config and restart apache -> OK ucs-test/82_saml/04_saml_login -> OK YAML -> OK Code in 4.4-0 -> OK |