summaryrefslogtreecommitdiffstats
path: root/inc/simplesamlphp/extra
diff options
context:
space:
mode:
authorJérôme Schneider <jschneider@entrouvert.com>2013-06-07 10:19:28 (GMT)
committerJérôme Schneider <jschneider@entrouvert.com>2013-06-07 10:19:28 (GMT)
commit148696b03f7679dbb4d10caf1c03b40b00294bc6 (patch)
tree099a7906d27653c9bb31dfc8accd768285f75395 /inc/simplesamlphp/extra
parentbf196f5d5d1b87bab633394aca23d77b43621d4e (diff)
downloadspip-saml-148696b03f7679dbb4d10caf1c03b40b00294bc6.zip
spip-saml-148696b03f7679dbb4d10caf1c03b40b00294bc6.tar.gz
spip-saml-148696b03f7679dbb4d10caf1c03b40b00294bc6.tar.bz2
include simplesamlphp and fix sso
Diffstat (limited to 'inc/simplesamlphp/extra')
-rw-r--r--inc/simplesamlphp/extra/auth_memcookie.conf38
1 files changed, 38 insertions, 0 deletions
diff --git a/inc/simplesamlphp/extra/auth_memcookie.conf b/inc/simplesamlphp/extra/auth_memcookie.conf
new file mode 100644
index 0000000..c387a85
--- /dev/null
+++ b/inc/simplesamlphp/extra/auth_memcookie.conf
@@ -0,0 +1,38 @@
+<Location />
+ # This is a list of memcache servers which Auth MemCookie
+ # should use. It is a ','-separated list of
+ # host:port-pairs.
+ # Note that this list must list the same servers as the
+ # 'authmemcookie.servers'-option in config.php in the
+ # configuration for simpleSAMLphp.
+ Auth_memCookie_Memcached_AddrPort "127.0.0.1:11211"
+
+ # This must be set to 'on' to enable Auth MemCookie for
+ # this directory.
+ Auth_memCookie_Authoritative on
+
+ # This adjusts the maximum number of data elements in the
+ # session data. The default is 10, which can be to low.
+ Auth_memCookie_SessionTableSize "40"
+
+ # These two commands are required to enable access control
+ # in Apache.
+ AuthType Cookie
+ AuthName "My Login"
+
+ # This command causes apache to redirect to the given
+ # URL when we receive a '401 Authorization Required'
+ # error. We redirect to "/simplesaml/authmemcookie.php",
+ # which initializes a login to the IdP.
+ ErrorDocument 401 "/simplesaml/authmemcookie.php"
+
+</Location>
+
+<Location /secret>
+ # This allows all authenticated users to access the
+ # directory. To learn more about the 'Require' command,
+ # please look at:
+ # http://httpd.apache.org/docs/2.0/mod/core.html#require
+ Require valid-user
+</Location>
+