Commit 8caad0bd authored by Xavier Guimard's avatar Xavier Guimard

Documentation update

parent f581a058
......@@ -64,20 +64,43 @@ For example, a protected virtual host for a local application:
And a protected virtual host with LemonLDAP::NG as reverse proxy:
</p>
<pre class="code file apache">&lt;<span class="kw3">VirtualHost</span> *:80&gt;
<span class="kw1">ServerName</span> proxysite.example.com
<span class="kw1">ServerName</span> application.example.com
&nbsp;
PerlHeaderParserHandler My::Package
&nbsp;
<span class="kw1">ProxyPreserveHost</span> <span class="kw2">on</span>
<span class="co1"># Reverse-Proxy</span>
<span class="kw1">ProxyPass</span> / http://private-name/
<span class="co1"># Change &quot;Location&quot; header in redirections</span>
<span class="kw1">ProxyPassReverse</span> / http://private-name/
<span class="co1"># Change domain cookies</span>
<span class="kw1">ProxyPassReverseCookieDomain</span> private-name application.example.com
&nbsp;
<span class="kw1">ErrorLog</span> /var/log/apache2/proxysite_error.log
<span class="kw1">CustomLog</span> /var/log/apache2/proxysite_access.log combined
&lt;/<span class="kw3">VirtualHost</span>&gt;</pre>
<p>
Same with remote server configured with the same host name:
</p>
<pre class="code file apache">&lt;<span class="kw3">VirtualHost</span> *:80&gt;
<span class="kw1">ServerName</span> application.example.com
&nbsp;
PerlHeaderParserHandler My::Package
&nbsp;
<span class="co1"># Reverse-Proxy</span>
<span class="kw1">ProxyPass</span> / http://APPLICATION_IP/
<span class="kw1">ProxyPassReverse</span> / http://APPLICATION_IP/
&nbsp;
<span class="kw1">ProxyPreserveHost</span> <span class="kw2">on</span>
&nbsp;
<span class="kw1">ErrorLog</span> /var/log/apache2/proxysite_error.log
<span class="kw1">CustomLog</span> /var/log/apache2/proxysite_access.log combined
&lt;/<span class="kw3">VirtualHost</span>&gt;</pre>
<p>
<p><div class="noteclassic">The <code>ProxyPreserveHost</code> directive will forward the Host header to the protected application
<p><div class="noteclassic">The <code>ProxyPreserveHost</code> directive will forward the Host header to the protected application.<br/>
To learn more about using Apache as reverse-proxy, see <a href="http://httpd.apache.org/docs/2.2/mod/mod_proxy.html" class="urlextern" title="http://httpd.apache.org/docs/2.2/mod/mod_proxy.html" rel="nofollow">Apache documentation</a>.
</div></p>
</p>
......@@ -87,7 +110,7 @@ And a protected virtual host with LemonLDAP::NG as reverse proxy:
</p>
</div>
<!-- SECTION "Apache configuration" [198-1687] -->
<!-- SECTION "Apache configuration" [198-2415] -->
<h2><a name="lemonldapng_configuration" id="lemonldapng_configuration">LemonLDAP::NG configuration</a></h2>
<div class="level2">
......@@ -115,7 +138,7 @@ A virtual host contains:
</ul>
</div>
<!-- SECTION "LemonLDAP::NG configuration" [1688-2175] -->
<!-- SECTION "LemonLDAP::NG configuration" [2416-2903] -->
<h3><a name="access_rules_and_http_headers" id="access_rules_and_http_headers">Access rules and HTTP headers</a></h3>
<div class="level3">
......@@ -125,7 +148,7 @@ See <strong><a href="../../documentation/1.0/writingrulesand_headers.html" class
</p>
</div>
<!-- SECTION "Access rules and HTTP headers" [2176-2368] -->
<!-- SECTION "Access rules and HTTP headers" [2904-3096] -->
<h3><a name="post_data" id="post_data">POST data</a></h3>
<div class="level3">
......@@ -135,7 +158,7 @@ See <strong><a href="../../documentation/1.0/formreplay.html" class="wikilink1"
</p>
</div>
<!-- SECTION "POST data" [2369-2503] -->
<!-- SECTION "POST data" [3097-3231] -->
<h3><a name="options" id="options">Options</a></h3>
<div class="level3">
......@@ -156,4 +179,4 @@ These options are used to build redirection <acronym title="Uniform Resource Loc
</p>
</div>
<!-- SECTION "Options" [2504-] --></div><!-- closes <div class="dokuwiki export">-->
\ No newline at end of file
<!-- SECTION "Options" [3232-] --></div><!-- closes <div class="dokuwiki export">-->
\ No newline at end of file
......@@ -91,8 +91,6 @@ If you need it, you can rebuild RPMs:
</li>
<li class="level1"><div class="li"> Install all build dependencies (see BuildRequires in lemonldap-ng.<acronym title="specification">spec</acronym>)</div>
</li>
<li class="level1"><div class="li"> Put lemonldap-ng.<acronym title="specification">spec</acronym> in %_topdir/SPECS</div>
</li>
<li class="level1"><div class="li"> Put LemonLDAP::NG tarball in %_topdir/SOURCES</div>
</li>
<li class="level1"><div class="li"> Edit ~/.rpmmacros and set your build parameters (example for RHEL5):</div>
......@@ -110,15 +108,16 @@ If you need it, you can rebuild RPMs:
</li>
</ul>
<pre class="code">
$ rpmbuild -ba SPECS/lemonldap-ng.spec
rpmbuild -ta SOURCES/lemonldap-ng-VERSION.tar.gz
</pre>
</div>
<!-- SECTION "Build your packages" [1046-1534] -->
<!-- SECTION "Build your packages" [1046-1500] -->
<h2><a name="package_gpg_signature" id="package_gpg_signature">Package GPG signature</a></h2>
<div class="level2">
<p>
The GPG key can be downloaded here: <a href="../media/rpm-gpg-key-ow2" class="media mediafile mf_" title="rpm-gpg-key-ow2">rpm-gpg-key-ow2</a>
</p>
......@@ -126,11 +125,11 @@ The GPG key can be downloaded here: <a href="../media/rpm-gpg-key-ow2" class="me
Install it to trust RPMs:
</p>
<pre class="code">
# rpm --import rpm-gpg-key-ow2
rpm --import rpm-gpg-key-ow2
</pre>
</div>
<!-- SECTION "Package GPG signature" [1535-1703] -->
<!-- SECTION "Package GPG signature" [1501-1666] -->
<h2><a name="install_packages_with_yum" id="install_packages_with_yum">Install packages with yum</a></h2>
<div class="level2">
......@@ -140,7 +139,7 @@ If the packages are stored in a yum repository:
</p>
<pre class="code">
# yum install lemonldap-ng
yum install lemonldap-ng
</pre>
<p>
......@@ -148,11 +147,11 @@ You can also use yum on local RPMs file, to manage dependencies:
</p>
<pre class="code">
# yum install lemonldap-ng-* perl-Lemonldap-NG-*
yum install lemonldap-ng-* perl-Lemonldap-NG-*
</pre>
</div>
<!-- SECTION "Install packages with yum" [1704-1963] -->
<!-- SECTION "Install packages with yum" [1667-1922] -->
<h2><a name="install_packages_with_rpm" id="install_packages_with_rpm">Install packages with rpm</a></h2>
<div class="level2">
......@@ -166,11 +165,11 @@ You have then to install all the downloaded packages:
</p>
<pre class="code">
# rpm -Uvh lemonldap-ng-* perl-Lemonldap-NG-*
rpm -Uvh lemonldap-ng-* perl-Lemonldap-NG-*
</pre>
</div>
<!-- SECTION "Install packages with rpm" [1964-2184] -->
<!-- SECTION "Install packages with rpm" [1923-2141] -->
<h2><a name="install_just_one_component" id="install_just_one_component">Install just one component</a></h2>
<div class="level2">
......@@ -180,7 +179,7 @@ You can choose to install only one component by choosing the package lemonldap-n
</p>
</div>
<!-- SECTION "Install just one component" [2185-2446] -->
<!-- SECTION "Install just one component" [2142-2403] -->
<h2><a name="file_location" id="file_location">File location</a></h2>
<div class="level2">
<ul>
......@@ -197,7 +196,7 @@ You can choose to install only one component by choosing the package lemonldap-n
</ul>
</div>
<!-- SECTION "File location" [2447-2802] -->
<!-- SECTION "File location" [2404-2759] -->
<h2><a name="change_default_dns_domain" id="change_default_dns_domain">Change default DNS domain</a></h2>
<div class="level2">
......@@ -206,8 +205,8 @@ You can choose to install only one component by choosing the package lemonldap-n
By default, <acronym title="Domain Name System">DNS</acronym> domain is <code>example.com</code>. You can change it quick with a sed command. For example, we change it to <code>ow2.org</code>:
</p>
<pre class="code">
# sed -i &#039;s/example\.com/ow2.org/g&#039; /etc/lemonldap-ng/* /var/lib/lemonldap-ng/conf/lmConf-1 /var/lib/lemonldap-ng/test/index.pl
sed -i &#039;s/example\.com/ow2.org/g&#039; /etc/lemonldap-ng/* /var/lib/lemonldap-ng/conf/lmConf-1 /var/lib/lemonldap-ng/test/index.pl
</pre>
</div>
<!-- SECTION "Change default DNS domain" [2803-] --></div><!-- closes <div class="dokuwiki export">-->
\ No newline at end of file
<!-- SECTION "Change default DNS domain" [2760-] --></div><!-- closes <div class="dokuwiki export">-->
\ No newline at end of file
......@@ -85,7 +85,7 @@ Its <acronym title="Simple Object Access Protocol">SOAP</acronym> <acronym title
</li>
<li class="level1"><div class="li"> by <acronym title="Internet Protocol">IP</acronym></div>
</li>
<li class="level1"><div class="li"> by double <acronym title="Internet Protocol">IP</acronym> (sessions opened from multiple computers)</div>
<li class="level1"><div class="li"> by double <acronym title="Internet Protocol">IP</acronym> (sessions opened by the same user from multiple computers)</div>
</li>
</ul>
......@@ -94,7 +94,7 @@ It can be used to delete a session
</p>
</div>
<!-- SECTION "Session explorer" [1007-1241] -->
<!-- SECTION "Session explorer" [1007-1258] -->
<h3><a name="session_restrictions" id="session_restrictions">Session restrictions</a></h3>
<div class="level3">
......@@ -116,7 +116,7 @@ Those capabilities can be used simultaneously or separately.
</p>
</div>
<!-- SECTION "Session restrictions" [1242-1558] -->
<!-- SECTION "Session restrictions" [1259-1575] -->
<h3><a name="double_cookie" id="double_cookie">Double cookie</a></h3>
<div class="level3">
......@@ -136,7 +136,7 @@ So if the http cookie is stolen, sensitive applications stay secured.
</p>
</div>
<!-- SECTION "Double cookie" [1559-1832] -->
<!-- SECTION "Double cookie" [1576-1849] -->
<h2><a name="notifications" id="notifications">Notifications</a></h2>
<div class="level2">
......@@ -146,4 +146,4 @@ Lemonldap::NG can be used to prompt users with a message. This can be used to no
</p>
</div>
<!-- SECTION "Notifications" [1833-] --></div><!-- closes <div class="dokuwiki export">-->
\ No newline at end of file
<!-- SECTION "Notifications" [1850-] --></div><!-- closes <div class="dokuwiki export">-->
\ No newline at end of file
......@@ -46,7 +46,7 @@ Current stable version is 0.9.4.1:
</li>
<li class="level1"><div class="li"> <a href="http://forge.ow2.org/project/download.php?group_id=274&amp;file_id=13956" class="urlextern" title="http://forge.ow2.org/project/download.php?group_id=274&amp;file_id=13956" rel="nofollow">Fedora11 RPM bundle</a></div>
</li>
<li class="level1"><div class="li"> <a href="http://forge.ow2.org/project/download.php?group_id=274&amp;file_id=13689" class="urlextern" title="http://forge.ow2.org/project/download.php?group_id=274&amp;file_id=13689" rel="nofollow">Debian bundle</a></div>
<li class="level1"><div class="li"> <a href="http://forge.ow2.org/project/download.php?group_id=274&amp;file_id=13689" class="urlextern" title="http://forge.ow2.org/project/download.php?group_id=274&amp;file_id=13689" rel="nofollow">Debian/Ubuntu bundle</a></div>
</li>
</ul>
......@@ -67,7 +67,7 @@ Current stable version is 0.9.4.1:
</p>
</div>
<!-- SECTION "Stable version" [60-877] -->
<!-- SECTION "Stable version" [60-884] -->
<h3><a name="testing_version" id="testing_version">Testing version</a></h3>
<div class="level3">
......@@ -81,7 +81,7 @@ Current testing version is 1.0rc2:
</ul>
</div>
<!-- SECTION "Testing version" [878-1025] -->
<!-- SECTION "Testing version" [885-1032] -->
<h3><a name="svn_nightly_builds" id="svn_nightly_builds">SVN nightly builds</a></h3>
<div class="level3">
<ul>
......@@ -90,7 +90,7 @@ Current testing version is 1.0rc2:
</ul>
</div>
<!-- SECTION "SVN nightly builds" [1026-1133] -->
<!-- SECTION "SVN nightly builds" [1033-1140] -->
<h2><a name="contributions" id="contributions">Contributions</a></h2>
<div class="level2">
<ul>
......@@ -101,12 +101,12 @@ Current testing version is 1.0rc2:
</ul>
</div>
<!-- SECTION "Contributions" [1134-1344] -->
<!-- SECTION "Contributions" [1141-1351] -->
<h2><a name="getting_sources_from_svn_repository" id="getting_sources_from_svn_repository">Getting sources from SVN repository</a></h2>
<div class="level2">
</div>
<!-- SECTION "Getting sources from SVN repository" [1345-1393] -->
<!-- SECTION "Getting sources from SVN repository" [1352-1400] -->
<h3><a name="anonymous_access" id="anonymous_access">Anonymous access</a></h3>
<div class="level3">
......@@ -117,7 +117,7 @@ Sources are currently available on OW2. You can simply checkout sources with the
<pre class="code">svn checkout svn://svn.forge.objectweb.org/svnroot/lemonldap</pre>
</div>
<!-- SECTION "Anonymous access" [1394-1597] -->
<!-- SECTION "Anonymous access" [1401-1604] -->
<h3><a name="developer_access" id="developer_access">Developer access</a></h3>
<div class="level3">
......@@ -128,4 +128,4 @@ Lemonldap::NG developer must have a account on OW2 plateform, and could authenti
<pre class="code">svn checkout svn+ssh://developername@svn.forge.objectweb.org/svnroot/lemonldap</pre>
</div>
<!-- SECTION "Developer access" [1598-] --></div><!-- closes <div class="dokuwiki export">-->
\ No newline at end of file
<!-- SECTION "Developer access" [1605-] --></div><!-- closes <div class="dokuwiki export">-->
\ No newline at end of file
......@@ -229,12 +229,14 @@ LemonLDAP::NG is the first <acronym title="Single Sign On">SSO</acronym> softwar
</li>
<li class="level1"><div class="li"> Apache logs</div>
</li>
<li class="level1"><div class="li"> Syslog</div>
</li>
<li class="level1"><div class="li"> Log4Perl compatibility</div>
</li>
</ul>
</div>
<!-- SECTION "Administration" [2543-2783] -->
<!-- SECTION "Administration" [2543-2794] -->
<h3><a name="security" id="security">Security</a></h3>
<div class="level3">
......@@ -252,17 +254,17 @@ LemonLDAP::NG is the first <acronym title="Single Sign On">SSO</acronym> softwar
</li>
<li class="level1"><div class="li"> Compatibility with Apache mod_security</div>
</li>
<li class="level1"><div class="li"> User tracking in Apache logs</div>
<li class="level1"><div class="li"> User tracking in Apache logs or syslog</div>
</li>
</ul>
</div>
<!-- SECTION "Security" [2784-3052] -->
<!-- SECTION "Security" [2795-3073] -->
<h2><a name="project_activity" id="project_activity">Project activity</a></h2>
<div class="level2">
</div>
<!-- SECTION "Project activity" [3053-3082] -->
<!-- SECTION "Project activity" [3074-3103] -->
<h3><a name="ohloh_statistics" id="ohloh_statistics">Ohloh statistics</a></h3>
<div class="level3">
......@@ -271,7 +273,7 @@ LemonLDAP::NG is the first <acronym title="Single Sign On">SSO</acronym> softwar
<script type="text/javascript" src="http://www.ohloh.net/p/12421/widgets/project_languages.js"></script>
</div>
<!-- SECTION "Ohloh statistics" [3083-3339] -->
<!-- SECTION "Ohloh statistics" [3104-3360] -->
<h3><a name="svn_activity" id="svn_activity">SVN activity</a></h3>
<div class="level3">
......@@ -281,6 +283,6 @@ LemonLDAP::NG is the first <acronym title="Single Sign On">SSO</acronym> softwar
<a href="/_detail/icons/clock.png?id=start" class="media" title="icons:clock.png"><img src="../media/icons/clock.png" class="media" alt="" /></a>
</div>
</p>
<ul class="rss"><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1848" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1848" rel="nofollow">Doc update</a> by clement_oudot (2010/11/24 18:04)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1847" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1847" rel="nofollow">Fix rule download regexp (#LEMONLDAP-250)</a> by clement_oudot (2010/11/24 15:32)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1846" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1846" rel="nofollow">Doc update</a> by guimard (2010/11/24 06:08)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1845" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1845" rel="nofollow">Doc update</a> by guimard (2010/11/22 22:51)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1844" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1844" rel="nofollow">Fix make cpan target</a> by clement_oudot (2010/11/22 13:36)</div></li></ul>
<ul class="rss"><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1857" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1857" rel="nofollow">Cpan test error</a> by guimard (2010/11/26 20:03)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1856" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1856" rel="nofollow">Work on RPM for 1.0 (#LEMONLDAP-206)</a> by clement_oudot (2010/11/26 17:00)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1855" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1855" rel="nofollow">Doc update</a> by clement_oudot (2010/11/26 10:11)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1854" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1854" rel="nofollow">Doc update</a> by guimard (2010/11/25 18:45)</div></li><li><div class="li"><a href="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1853" class="urlextern" title="http://websvn.ow2.org/revision.php?repname=lemonldap&amp;path=%2F&amp;rev=1853" rel="nofollow">Doc update</a> by clement_oudot (2010/11/25 17:28)</div></li></ul>
</div>
<!-- SECTION "SVN activity" [3340-] --></div><!-- closes <div class="dokuwiki export">-->
\ No newline at end of file
<!-- SECTION "SVN activity" [3361-] --></div><!-- closes <div class="dokuwiki export">-->
\ No newline at end of file
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment