particle-os/debian-koji
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
debian-koji/www/conf
History
Tim Smith 6e58377a89 Allow kojiweb to proxy users obtained via different mechanisms 
This allows for users authenticated to the Koji Web interface via
Kerberos to be proxied to the HUB using an SSL certificate and
(in theory) vice versa though it's not clear why you'd want that.

This is useful in environments where the owners of the Kerberos
realm are not willing to create service accounts and export
keytabs for them.

Set WebAuth = kerberos to indicate that users are authenticated
to the web via Kerberos. The existing config controls how kojiweb
authenticates to the HUB.

If using this, it is recommended to set

LoginCreatesUser = Off

in hub.conf, to avoid accidental creation of Koji accounts for
users of the wider Kerberos realm.
2021-11-04 12:07:05 +00:00
..
kojiweb.conf web: set WSGIProcessGroup inside Directory 2021-03-02 15:33:16 +01:00
Makefile package hub.conf.d and web.conf.d 2015-03-31 17:34:16 -04:00
web.conf Allow kojiweb to proxy users obtained via different mechanisms 2021-11-04 12:07:05 +00:00