Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision
Previous revision
documentation:latest:handlerauthbasic [2019/05/16 13:35]
cmaudoux [Virtual host]
documentation:latest:handlerauthbasic [2019/09/10 15:00] (current)
cmaudoux [Handler parameters]
Line 26: Line 26:
 ==== Handler parameters ==== ==== Handler parameters ====
  
-No parameters needed. But you have to allow REST sessions web services, see [[restsessionbackend|REST sessions backend]] ​and to enable local cache (enabled by default in lemonldap-ng.ini).+No parameters needed. But you have to allow REST sessions web services, see [[restsessionbackend|REST sessions backend]]enable local cache (enabled by default in lemonldap-ng.ini) ​and allow source IP addresses to access required locations in Portal Virtual Host.
  
-<note warning>​With AuthBasic handler, you have to disable CSRF token by setting a special rule based on callers ​IP address ​like this :+<note warning>​With AuthBasic handler, you have to disable CSRF token by setting a special rule based on source ​IP addresses ​like this :
  
 requireToken => $env->​{REMOTE_ADDR} !~ /​^127\.0\.[1-3]\.1$/​ requireToken => $env->​{REMOTE_ADDR} !~ /​^127\.0\.[1-3]\.1$/​
 +
 +With AutChoice, you have to declare which authentication module is requested by handler to create global session.
 +
 +Go to: ''​General Parameters > Authentication parameters > Choice parameters''​
 +
 +and set authentication module'​s name :
 +
 +**AuthBasic handler parameter** => 2_LDAP (by example)
 +
 +</​note>​
 +
 +<note important>​
 +With HTTPS, you may have to set **LWP::​UserAgent object** with ''​verify_hostname => 0''​ and ''​SSL_verify_mode => 0''​.
 +
 +Go to:
 +
 +''​General Parameters > Advanced Parameters > Security > Choice parameters > SSL options for server requests''​
 </​note>​ </​note>​