blob: f0ee4c14848b031de5fcfaf9b4f430145a919a54 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
|
**********************************************************************
The OpenID-LDAP identity provider has been installed in the directory
%%WWWDIR%%.
SECURITY WARNING: OpenID-LDAP uses HTTP Basic Authentication,
which means that users' passwords are transmitted in the clear
(unencrypted) between the web browser and the web server. By
default, OpenID-LDAP requires the use of an SSL connection and
will fail with an error message if the web server doesn't use SSL.
You must configure OpenID-LDAP to work with your directory server by
editing the file %%WWWDIR%%/ldap.php.
You must add the appropriate configuration directives to your web
server configuration file. A typical configuration for Apache HTTPD
2.2 installed from the FreeBSD port would involve adding the following
lines to %%LOCALBASE%%/etc/apache22/Includes/openid-ldap.conf:
AddType application/x-httpd-php .php
Alias /openid-ldap %%WWWDIR%%
<IfModule dir_module>
DirectoryIndex index.php
</IfModule>
<Directory %%WWWDIR%%>
Options Indexes
AllowOverride All
Order allow,deny
Allow from all
</Directory>
<IfModule rewrite_module>
RewriteEngine on
RewriteCond %{REQUEST_URI} !^/openid-ldap/(.+)\.php(.*)$
RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /openid-ldap/([A-Za-z0-9]+)\?(.*)\ HTTP/
RewriteRule ^/(.*)$ http://%{SERVER_NAME}/openid-ldap/index.php?user=%1&%2 [proxy]
RewriteCond %{REQUEST_URI} !^/openid-ldap/(.+)\.php(.*)$
RewriteRule ^/([A-Za-z0-9]+)$ http://%{SERVER_NAME}/openid-ldap/index.php?user=$1 [proxy]
</IfModule>
**********************************************************************
|
