error document & public directory
Václav Mach
machv at cesnet.cz
Mon Sep 17 08:45:36 EDT 2018
On 09/17/2018 02:14 PM, Peter Schober wrote:
> * Václav Mach <machv at cesnet.cz> [2018-09-17 14:01]:
>> On 09/17/2018 01:57 PM, Václav Mach wrote:
>>> Is this intended behavior? Any more thought on this?
>>
>> The directory /test was not existing, so that was the problem. Ignore
>> previous mail.
>
> That should be irrelevant for a <Location> directive.
> Protection would be enforced even if after auth passes you'd get a 404
> Not Found error.
Solved by:
<Location "/">
AuthType shibboleth
<RequireAll>
Require shibboleth
ShibRequestSetting requireSession 1
Require shib-attr perunUniqueGroupName test
</RequireAll>
ErrorDocument 401 /unauthorized.html
</Location>
<Location "/unauthorized.html">
AuthType shibboleth
Require shibboleth
ShibRequestSetting requireSession 0
</Location>
While this works fine, Alan Buxey mentioned that this could lead to
unexpected URI circumvention.
I assume i should use Files directive instead of Location for the
unauthorized.html file, but this does not work.
cheers,
Vaclav
--
Václav Mach
tel: +420 234 680 206
CESNET, z.s.p.o.
www.cesnet.cz
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3710 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://shibboleth.net/pipermail/users/attachments/20180917/19887de8/attachment.p7s>
More information about the users
mailing list