- default restricted access

Changed files:
    apache.conf -> 1.2
    lighttpd.conf -> 1.2

diff --git a/apache.conf b/apache.conf
index 09139ce3619cf4516c102ff1c0bec464d5974036..bc4034bc7fd8658d6474f17d25b1029fcc63e436 100644 (file)
--- a/apache.conf
+++ b/apache.conf
@@ -1,4 +1,21 @@
 Alias /naglite /usr/share/naglite
 <Directory /usr/share/naglite>
-       Allow from all
+       # WITHOUT SSL
+       <IfModule !mod_ssl.c>
+               Order deny,allow
+               Deny from all
+               Allow from 127.0.0.1
+       </IfModule>
+
+       # WITH SSL ENABLED
+       <IfModule mod_ssl.c>
+               SSLRequireSSL
+
+               Allow from all
+               AuthType Basic
+               AuthUserFile /etc/webapps/nagios/passwd
+               AuthGroupFile /etc/webapps/nagios/group
+               AuthName "Nagios"
+               Require group nagios
+       </IfModule>
 </Directory>

diff --git a/lighttpd.conf b/lighttpd.conf
index 66cd90ddc34c48d0da7453f89a883c81e910c00c..06d0732ddf437b36e0c6c2f095c8e5d2dc236625 100644 (file)
--- a/lighttpd.conf
+++ b/lighttpd.conf
@@ -1,3 +1,24 @@
 alias.url += (
     "/naglite" => "/usr/share/naglite",
 )
+
+$HTTP["url"] =~ "^/naglite/" {
+       auth.require = (
+               "/naglite/" => (
+                       "method"  => "basic",
+                       "realm"   => "Nagios",
+                       "require" => "valid-user"
+               )
+       )
+
+       auth.backend = "htpasswd"
+#      auth.backend = "ldap"
+
+       # htpasswd config
+       auth.backend.htpasswd.userfile = "/etc/webapps/nagios/passwd"
+
+       # ldap config
+       auth.backend.ldap.hostname = "localhost"
+       auth.backend.ldap.base-dn  = "ou=People,dc=example,dc=org"
+       auth.backend.ldap.filter   = "(uid=$)"
+}