Apache Proxy & Basic Auth

apache-2.4 mod-proxy http-basic-authentication proxypass mod-auth-ldap
5,184

This configuration worked for me:

    <Location />
            AuthType Basic
            AuthName "LDAP Login"
            AuthBasicProvider ldap
            AuthLDAPBindDN USER@DOMAIN
            AuthLDAPBindPassword PASSWORD
            AuthLDAPURL ldap://IP:PORT/OU=...,DC=...,DC=...,DC=intern?uid?sub
            Require ldap-group CN=...,OU=...,OU=...,OU=...,DC=...,DC=...,DC=intern
            Require valid-user
    </Location>

    ProxyPass               /        http://localhost:8080/ nocanon
    ProxyPassReverse        /        http://localhost:8080/
    ProxyPreserveHost       On

    ProxyRequests           Off
    AllowEncodedSlashes     NoDecode
    RequestHeader set X-Forwarded-Proto "https"
    RequestHeader set X-Forwarded-Port "443"

It seems that the order of the commands is relevant.

Share:
5,184

Related videos on Youtube

embedded
Author by

embedded

Updated on September 18, 2022

Comments

  • embedded
    embedded almost 2 years

    Im trying to set up an Apache Proxy which also does LDAP Basic Auth:

    <IfModule mod_ssl.c>
    <VirtualHost _default_:443>
            ServerAdmin webmaster@localhost

            DocumentRoot /var/www/html

            ProxyPass               /        http://localhost:8080/ nocanon
            ProxyPassReverse        /        http://localhost:8080/
            ProxyPreserveHost       On

            ProxyRequests           Off
            AllowEncodedSlashes     NoDecode
            RequestHeader set X-Forwarded-Proto "https"
            RequestHeader set X-Forwarded-Port "443"

            <Location />
                    AuthType Basic
                    AuthName "LDAP Login for access"
                    AuthBasicProvider ldap
                    AuthLDAPBindDN USER@DOMAIN
                    AuthLDAPBindPassword PASSWORD
                    AuthLDAPURL ldaps://FQDN:636/CN=..,OU=..?uid?sub
                    Require valid-user
            </Location>

    The ProxyPass is working without the AuthType Basic part, however, if combined, the BasicAuth asks for credentials, and then the server throws an 500 error, without loggin a thing to his error.log

    Am i missing something?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

In Apache how to define multiple ProxyPass to different servers with the same context-root?
Apache 2.4 http auth doesn't prompt credentials
Apache forwarding to tomcat shows a blank page
Apache 2.4 [proxy_http:error] [proxy:error]
Authorization based on custom Header (Apache)
How can I access an environment variable set by a rewrite rule in an expression?
Apache 2.4 set ProxyTimeout only for ONE URL
Disable ProxyPass rules within a virtual host on apache 2
Apache Virtual Hosts .. Redirect .. ProxyPass .. and Alias
Apache 2.4 RequestHeader while reverse proxying with ProxyPass