This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
integration:authorization [2018/06/14 12:40] tjotov [ADUCID authorization attributes] |
integration:authorization [2019/08/01 08:27] tjotov |
||
---|---|---|---|
Line 1: | Line 1: | ||
====== Authorization in No-code ====== | ====== Authorization in No-code ====== | ||
- | No-code relies on Apache. You can use any authorization method on ADUCID Apache or ProxyPass to another Apache and resolve authorization there. | + | No-Code relies on Apache. You can use any authorization method on ADUCID Apache or ProxyPass to another Apache and resolve authorization there. |
ADUCID security default application are authorized by Apache with group file authorization. It is recommended to used " | ADUCID security default application are authorized by Apache with group file authorization. It is recommended to used " | ||
+ | <sxh bash> | ||
< | < | ||
Require valid-user | Require valid-user | ||
Require group registrator | Require group registrator | ||
</ | </ | ||
+ | </ | ||
===== ADUCID authorization attributes ===== | ===== ADUCID authorization attributes ===== | ||
We add two atrribute sets to support Apache authorization: | We add two atrribute sets to support Apache authorization: | ||
You can force it using Require role aducid:XXX | You can force it using Require role aducid:XXX | ||
+ | <sxh bash> | ||
< | < | ||
Require valid-user | Require valid-user | ||
Require role aducid: | Require role aducid: | ||
</ | </ | ||
+ | </ | ||
Personal factor states: | Personal factor states: | ||
* PF_VERIFIED - personal factor has been verified | * PF_VERIFIED - personal factor has been verified |