cassification of a web page that is also accessible behind a reverse proxy
Mikael Kermorgant
mikael.kermorgant at gmail.com
Wed Feb 14 08:41:30 EST 2007
Thanks a lot, that's indeed a perfect solution !
Regards,
Mikael
2007/2/14, Romain Bourgue <romain.bourgue at agriculture.gouv.fr>:
> You have to set the mod_cas on the reverse proxy too... :
>
> On the reverse proxy, set this kind of access :
> ProxyPass / http://internal_address/external/
> ProxyPassReverse / http://internal_address/external/
> protect it with mod_cas
>
> On the internal server, you have to tell not to require authentication for
> requests coming from the reverse proxy (as they are already authenticated) :
>
> <Location />
> Require valid-user
> Authtype CAS
> Allow from [myreverse]
> Satisfy any
> </Location>
>
> Romain
>
> Mikael Kermorgant a écrit :
> > Hello,
> >
> > I have a web page that is either :
> > - accessed directly for internal users of the enterprise
> > - accessed via a reverse proxy on our DMZ for external users
> >
> > I've tried to set up mod_cas on the apache server serving the web
> > page. It works inside, not for external users. External users get
> > redirected to the CAS server for logon. It logon is ok, they get
> > redirected to internal address, which is unaccessible from the
> > outside...
> >
> > Here's what I have on the reverse proxy :
> > ProxyPass / http://internal_address/
> >
> > Is there anything I can configure to get a working setup ?
> >
> > Thanks in advance,
> _______________________________________________
> Yale CAS mailing list
> cas at tp.its.yale.edu
> http://tp.its.yale.edu/mailman/listinfo/cas
>
--
Mikael Kermorgant
More information about the cas
mailing list