hub: switch to kerberos auth
Switch to kerberos aut and also ship ssl.conf, adapted to serve at localhost and the fqdn, instead of creating it via sed.
This commit is contained in:
Christian Kellner
parent
5d59084ddb
commit
63355fe0a4
4 changed files with 91 additions and 14 deletions
|
|
@ -15,8 +15,10 @@ KojiDebug = On
|
|||
KojiTraceback = extended
|
||||
|
||||
## Kerberos
|
||||
AuthPrincipal = host/kojihub@LOCAL
|
||||
AuthPrincipal = koji@LOCAL
|
||||
AuthKeytab = /share/koji.keytab
|
||||
HostPrincipalFormat = compile/%s@LOCAL
|
||||
ProxyPrincipals = koji@LOCAL
|
||||
|
||||
## SSL client certificate auth configuration ##
|
||||
DNUsernameComponent = CN
|
||||
|
|
@ -32,4 +34,4 @@ NotifyOnSuccess = False
|
|||
|
||||
## Plugins
|
||||
PluginPath = /usr/lib/koji-hub-plugins
|
||||
Plugins = osbuild
|
||||
Plugins = osbuild
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue