nocode:overview
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision | Next revision Both sides next revision | ||
|
nocode:overview [2019/08/01 09:49] tjotov [Other topics] |
nocode:overview [2020/02/29 11:05] mpospisek [Security remarks] |
||
|---|---|---|---|
| Line 20: | Line 20: | ||
| RequestHeader set X-Forwarded-User %{RU}e | RequestHeader set X-Forwarded-User %{RU}e | ||
| ===== Security remarks ===== | ===== Security remarks ===== | ||
| - | Apache has to be accessible only via TLS (https) | + | * Apache has to be accessible only via TLS (https). |
| - | Back-end application has to be separated and accessible only from Apache (http, ajp, ...) | + | |
| - | Apache installed for ADUCID shouldn' | + | |
| - | Headers from client are not transported to the back-end as ProxyPass is used (unless you configure Apache to do it) | + | |
| - | So if users sents REMOTE_USER to Apache, it is wiped out and target application won't see it | + | |
| ===== Technical overview ===== | ===== Technical overview ===== | ||
nocode/overview.txt · Last modified: 2020/02/29 11:07 by mpospisek
Page Tools
