dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update documentation

Browse Source
This commit is contained in:
Clément Oudot 2012-04-11 16:30:18 +00:00
parent 89f833c98c
commit 3b58a130fb
6 changed files with 121 additions and 24 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
doc/pages/documentation/1.2/browseablesessionbackend.html
View File

@ -88,7 +88,7 @@ Using Redis, you just have to add the “Index” parameter in <code>General pa
<p>
<em class="u">Exemple with MySQL</em>:
<em class="u">Example with MySQL</em>:
</p>
<p>

26
doc/pages/documentation/1.2/configlocation.html
View File

@ -182,7 +182,7 @@ Menu style preferences are stored in cookies (1 year duration). You can fix defa
<p>
LemonLDAP::NG provide a script that allows to edit configuration without graphical interface, this script is called <code>lmConfigEditor</code> and is stored in the bin/ LemonLDAP::NG directory, for example /usr/share/lemonldap-ng/bin:
LemonLDAP::NG provide a script that allows to edit configuration without graphical interface, this script is called <code>lmConfigEditor</code> and is stored in the LemonLDAP::NG bin/ directory, for example /usr/share/lemonldap-ng/bin:
</p>
<pre class="code">
/usr/share/lemonldap-ng/bin/lmConfigEditor
@ -194,7 +194,7 @@ LemonLDAP::NG provide a script that allows to edit configuration without graphic
</p>
<p>
The script uses the system <code>editor</code> command, that links to your favorite editor. To change it:
The script uses the <code>editor</code> system command, that links to your favorite editor. To change it:
</p>
<pre class="code">
@ -202,7 +202,7 @@ update-alternatives --config editor
</pre>
<p>
The configuration is then displayed as a big <acronym title="Practical Extraction and Report Language">Perl</acronym> Hash, that you can edit:
The configuration is displayed as a big <acronym title="Practical Extraction and Report Language">Perl</acronym> Hash, that you can edit:
</p>
<pre class="code file perl"><span class="re0">$VAR1</span> <span class="sy0">=</span> <span class="br0">&#123;</span>
<span class="st_h">'ldapAuthnLevel'</span> <span class="sy0">=&gt;</span> <span class="st_h">'2'</span><span class="sy0">,</span>
@ -220,7 +220,7 @@ If a modification is done, the configuration is saved with a new configuration n
</p>
</div>
<!-- SECTION "Command line configuration editor" [3648-4885] -->
<!-- SECTION "Command line configuration editor" [3648-4880] -->
<h2><a name="apache" id="apache">Apache</a></h2>
<div class="level2">
@ -253,7 +253,7 @@ These files must be included in Apache configuration, either with <code>Include<
</p>
</div>
<!-- SECTION "Apache" [4886-5645] -->
<!-- SECTION "Apache" [4881-5640] -->
<h3><a name="portal" id="portal">Portal</a></h3>
<div class="level3">
@ -352,7 +352,7 @@ In Portal virtual host, you will find several configuration parts:
&lt;/Perl&gt;</pre>
</div>
<!-- SECTION "Portal" [5646-8079] -->
<!-- SECTION "Portal" [5641-8074] -->
<h3><a name="manager1" id="manager1">Manager</a></h3>
<div class="level3">
@ -382,7 +382,7 @@ Manager virtual host is used to serve configuration interface and local document
&lt;/<span class="kw3">Directory</span>&gt;</pre>
</div>
<!-- SECTION "Manager" [8080-8764] -->
<!-- SECTION "Manager" [8075-8759] -->
<h3><a name="handler" id="handler">Handler</a></h3>
<div class="level3">
<ul>
@ -437,7 +437,7 @@ Then, to protect a standard virutal host, the only configuration line to add is:
<pre class="code file apache">PerlHeaderParserHandler My::Package</pre>
</div>
<!-- SECTION "Handler" [8765-10035] -->
<!-- SECTION "Handler" [8760-10030] -->
<h2><a name="configuration_reload" id="configuration_reload">Configuration reload</a></h2>
<div class="level2">
@ -481,7 +481,7 @@ The <code>reload</code> target is managed in Apache configuration, inside a virt
</p>
</div>
<!-- SECTION "Configuration reload" [10036-11392] -->
<!-- SECTION "Configuration reload" [10031-11387] -->
<h2><a name="local_file" id="local_file">Local file</a></h2>
<div class="level2">
@ -521,7 +521,7 @@ For example, to override configured skin for portal:
</p>
</div>
<!-- SECTION "Local file" [11393-12250] -->
<!-- SECTION "Local file" [11388-12245] -->
<h2><a name="script_files" id="script_files">Script files</a></h2>
<div class="level2">
@ -536,7 +536,7 @@ LemonLDAP::NG allows to override any configuration parameter directly in script
</p>
</div>
<!-- SECTION "Script files" [12251-12639] -->
<!-- SECTION "Script files" [12246-12634] -->
<h3><a name="portal1" id="portal1">Portal</a></h3>
<div class="level3">
@ -551,7 +551,7 @@ For example, in portal/index.pl:
<span class="br0">&#41;</span><span class="sy0">;</span></pre>
</div>
<!-- SECTION "Portal" [12640-12810] -->
<!-- SECTION "Portal" [12635-12805] -->
<h3><a name="handler1" id="handler1">Handler</a></h3>
<div class="level3">
@ -566,4 +566,4 @@ For example, in handler/MyHandler.pm:
<span class="br0">&#41;</span><span class="sy0">;</span></pre>
</div>
<!-- SECTION "Handler" [12811-] --></div><!-- closes <div class="dokuwiki export">-->
<!-- SECTION "Handler" [12806-] --></div><!-- closes <div class="dokuwiki export">-->

86
doc/pages/documentation/1.2/internalproxy.html Normal file
View File

@ -0,0 +1,86 @@
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN"
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en"
lang="en" dir="ltr">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title></title>
<!-- metadata -->
<meta name="generator" content="Offline" />
<meta name="version" content="Offline 0.1" />
<!-- style sheet links -->
<link rel="stylesheet" media="all" type="text/css" href="../../../css/all.css" />
<link rel="stylesheet" media="screen" type="text/css" href="../../../css/screen.css" />
<link rel="stylesheet" media="print" type="text/css" href="../../../css/print.css" />
</head>
<body>
<div class="dokuwiki export">
<h1><a name="internal_proxy" id="internal_proxy">Internal Proxy</a></h1>
<div class="level1">
</div>
<!-- SECTION "Internal Proxy" [1-30] -->
<h2><a name="presentation" id="presentation">Presentation</a></h2>
<div class="level2">
<p>
LemonLDAP::NG provides a proxy that can replace the use of Apache mod_proxy. This proxy use LWP <acronym title="Practical Extraction and Report Language">Perl</acronym> module to relay <acronym title="Hyper Text Transfer Protocol">HTTP</acronym> request. It can inspect <acronym title="Hyper Text Transfer Protocol">HTTP</acronym> headers to replace on the fly the Location and Set-Cookie headers.
</p>
<p>
Main differences with mod_proxy:
</p>
<ul>
<li class="level1"><div class="li"> The whole Location value is replaced, including the scheme (http or https), which can help to manage redirections below <acronym title="Secure Sockets Layer">SSL</acronym> hardware equipments</div>
</li>
<li class="level1"><div class="li"> It is compliant with the <a href="../../documentation/1.2/formreplay.html" class="wikilink1" title="documentation:1.2:formreplay">form replay</a> feature</div>
</li>
</ul>
</div>
<!-- SECTION "Presentation" [31-521] -->
<h2><a name="configuration" id="configuration">Configuration</a></h2>
<div class="level2">
<p>
The configuration is done in Apache, in a virtual host.
</p>
<p>
For example, to proxy <a href="https://www.public.com" class="urlextern" title="https://www.public.com" rel="nofollow">https://www.public.com</a> to <a href="http://www.private.com" class="urlextern" title="http://www.private.com" rel="nofollow">http://www.private.com</a>:
</p>
<pre class="code file apache">&lt;<span class="kw3">VirtualHost</span>&gt;
<span class="kw1">ServerName</span> www.public.com
&nbsp;
PerlModule Lemonldap::NG::Handler::Proxy
<span class="kw1">SetHandler</span> perl-<span class="kw1">script</span>
PerlHandler Lemonldap::NG::Handler::Proxy
&nbsp;
PerlSetVar LmProxyPass http://www.private.com/
PerlSetVar LmLocationToReplace http://www.private.com/,https://www.public.com
PerlSetVar LmCookieDomainToReplace private.com,public.com
&lt;/<span class="kw3">VirtualHost</span>&gt;</pre>
<p>
Parameters:
</p>
<ul>
<li class="level1"><div class="li"> <strong>LmProxyPass</strong>: <acronym title="Uniform Resource Locator">URL</acronym> to relay <acronym title="Hyper Text Transfer Protocol">HTTP</acronym> requests</div>
</li>
<li class="level1"><div class="li"> <strong>LmLocationToReplace</strong>: string to replace in <code>Location</code> header</div>
</li>
<li class="level1"><div class="li"> <strong>LmCookieDomainToReplace</strong>: string to replace in <code>Set-Cookie</code> header</div>
</li>
</ul>
</div>
<!-- SECTION "Configuration" [522-] --></div><!-- closes <div class="dokuwiki export">-->

21
doc/pages/documentation/1.2/upgrade.html
View File

@ -54,11 +54,20 @@ If you upgrade from older versions, please follow first:
<p>
<img src="/lib/images/smileys/fixme.gif" class="middle" alt="FIXME" /> Not failing back to <acronym title="Lightweight Directory Access Protocol">LDAP</acronym>, need to use Multi <acronym title="Secure Sockets Layer">SSL</acronym>;<acronym title="Lightweight Directory Access Protocol">LDAP</acronym>
The <a href="../../documentation/1.2/authssl.html" class="wikilink1" title="documentation:1.2:authssl">SSL authentication backend</a> behavior has changed:
</p>
<ul>
<li class="level1"><div class="li"> Before, when <acronym title="Secure Sockets Layer">SSL</acronym> authentication failed, an option could be set to fail back to <a href="../../documentation/1.2/authldap.html" class="wikilink1" title="documentation:1.2:authldap">LDAP authentication backend</a>.</div>
</li>
<li class="level1"><div class="li"> Now, to keep this behavior, you have to use <a href="../../documentation/1.2/authssl.html" class="wikilink1" title="documentation:1.2:authssl">SSL</a> and <a href="../../documentation/1.2/authldap.html" class="wikilink1" title="documentation:1.2:authldap">LDAP</a> chaining in a <a href="../../documentation/1.2/authmulti.html" class="wikilink1" title="documentation:1.2:authmulti">Multi</a> configuration:</div>
</li>
</ul>
<pre class="code">
Multi SSL;LDAP
</pre>
</div>
<!-- SECTION "SSL authentication backend" [360-459] -->
<!-- SECTION "SSL authentication backend" [360-755] -->
<h2><a name="opening_conditions" id="opening_conditions">Opening conditions</a></h2>
<div class="level2">
@ -68,7 +77,7 @@ If you upgrade from older versions, please follow first:
</p>
</div>
<!-- SECTION "Opening conditions" [460-589] -->
<!-- SECTION "Opening conditions" [756-885] -->
<h2><a name="login_history" id="login_history">Login history</a></h2>
<div class="level2">
@ -78,7 +87,7 @@ The <a href="../../documentation/1.2/loginhistory.html" class="wikilink1" title=
</p>
</div>
<!-- SECTION "Login history" [590-782] -->
<!-- SECTION "Login history" [886-1078] -->
<h2><a name="unprotect_rule" id="unprotect_rule">Unprotect rule</a></h2>
<div class="level2">
@ -88,7 +97,7 @@ The <code>unprotect</code> rule in Manager now deletes headers forged by an unau
</p>
</div>
<!-- SECTION "Unprotect rule" [783-1010] -->
<!-- SECTION "Unprotect rule" [1079-1306] -->
<h2><a name="custom_authentication_module" id="custom_authentication_module">Custom authentication module</a></h2>
<div class="level2">
@ -119,4 +128,4 @@ For example:
<span class="br0">&#125;</span></pre>
</div>
<!-- SECTION "Custom authentication module" [1011-] --></div><!-- closes <div class="dokuwiki export">-->
<!-- SECTION "Custom authentication module" [1307-] --></div><!-- closes <div class="dokuwiki export">-->

8
doc/pages/press.html
View File

@ -35,6 +35,8 @@ Some articles published somewhere in the world wide web.
<h2><a name="generic_articles" id="generic_articles">Generic articles</a></h2>
<div class="level2">
<ul>
<li class="level1"><div class="li"> 6 avril 2012: <a href="http://herve.vanmeerbeck.free.fr/?p=53" class="urlextern" title="http://herve.vanmeerbeck.free.fr/?p=53" rel="nofollow">Configurer LemonLDAP::NG comme serveur CAS</a> <a href="/_detail/icons/flags/fr.png?id=press" class="media" title="icons:flags:fr.png"><img src="../media/icons/flags/fr.png" class="media" alt="" /></a></div>
</li>
<li class="level1"><div class="li"> 31 Jan 2012: <a href="http://www.fitzdsl.net/?p=286" class="urlextern" title="http://www.fitzdsl.net/?p=286" rel="nofollow">Configuration de LemonLDAP::NG avec Google Authenticator</a> <a href="/_detail/icons/flags/fr.png?id=press" class="media" title="icons:flags:fr.png"><img src="../media/icons/flags/fr.png" class="media" alt="" /></a></div>
</li>
<li class="level1"><div class="li"> 22 Nov 2011: <a href="http://www.zdnet.fr/actualites/la-gendarmerie-nationale-renforce-la-securite-de-l-acces-a-son-si-39765875.htm" class="urlextern" title="http://www.zdnet.fr/actualites/la-gendarmerie-nationale-renforce-la-securite-de-l-acces-a-son-si-39765875.htm" rel="nofollow">ZDNet - La gendarmerie nationale renforce la sécurité de laccès à son SI</a> <a href="/_detail/icons/flags/fr.png?id=press" class="media" title="icons:flags:fr.png"><img src="../media/icons/flags/fr.png" class="media" alt="" /></a></div>
@ -44,7 +46,7 @@ Some articles published somewhere in the world wide web.
</ul>
</div>
<!-- SECTION "Generic articles" [80-665] -->
<!-- SECTION "Generic articles" [80-794] -->
<h2><a name="lemonldapng_11_release" id="lemonldapng_11_release">LemonLDAP::NG 1.1 release</a></h2>
<div class="level2">
<ul>
@ -61,7 +63,7 @@ Some articles published somewhere in the world wide web.
</ul>
</div>
<!-- SECTION "LemonLDAP::NG 1.1 release" [666-1281] -->
<!-- SECTION "LemonLDAP::NG 1.1 release" [795-1410] -->
<h2><a name="lemonldapng_10_release" id="lemonldapng_10_release">LemonLDAP::NG 1.0 release</a></h2>
<div class="level2">
<ul>
@ -76,4 +78,4 @@ Some articles published somewhere in the world wide web.
</ul>
</div>
<!-- SECTION "LemonLDAP::NG 1.0 release" [1282-] --></div><!-- closes <div class="dokuwiki export">-->
<!-- SECTION "LemonLDAP::NG 1.0 release" [1411-] --></div><!-- closes <div class="dokuwiki export">-->

2
doc/pages/start.html
View File

@ -283,6 +283,6 @@ LemonLDAP::NG is the first <acronym title="Single Sign On">SSO</acronym> softwar
<a href="/_detail/icons/clock.png?id=start" class="media" title="icons:clock.png"><img src="../media/icons/clock.png" class="media" alt="" /></a>
</div>
</p>
<ul class="rss"><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2378" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2378" rel="nofollow">Rev 2378 -- Little things from lintian</a> by guimard (2012/04/02 06:56)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2377" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2377" rel="nofollow">Rev 2377 -- Allow false value for customized error message (#LEMONLDAP-456)</a> by clement_oudot (2012/03/27 22:28)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2376" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2376" rel="nofollow">Rev 2376 -- Do not double decode UTF8 in DBI Notification module (#LEMONLDAP-455)</a> by clement_oudot (2012/03/27 22:16)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2375" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2375" rel="nofollow">Rev 2375 -- Typo</a> by guimard (2012/03/26 20:43)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2374" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2374" rel="nofollow">Rev 2374 -- Fix offline page name for login history (#LEMONLDAP-389)</a> by clement_oudot (2012/03/25 17:10)</div></li></ul>
<ul class="rss"><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2389" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2389" rel="nofollow">Rev 2389 -- Fr doc in progress (ldapconfbackend)</a> by guimard (2012/04/11 06:28)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2388" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2388" rel="nofollow">Rev 2388 -- Fr doc in progress (lmConfigEditor)</a> by guimard (2012/04/10 06:28)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2387" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2387" rel="nofollow">Rev 2387 -- Fr doc in progress (browseable)</a> by guimard (2012/04/10 06:18)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2386" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2386" rel="nofollow">Rev 2386 -- Documentation update for internal proxy (#LEMONLDAP-459)</a> by clement_oudot (2012/04/03 16:24)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2385" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;isdir=1&amp;rev=2385" rel="nofollow">Rev 2385 -- Translate cookie domain in internal proxy (#LEMONLDAP-459)</a> by clement_oudot (2012/04/03 15:35)</div></li></ul>
</div>
<!-- SECTION "SVN activity" [3361-] --></div><!-- closes <div class="dokuwiki export">-->