[Dspam-user] Web Frontend Logoff Resolved

classic Classic list List threaded Threaded
1 message Options
Reply | Threaded
Open this post in threaded view

[Dspam-user] Web Frontend Logoff Resolved

Roman Gelfand
This issue is easily resolved by.

This is a rough fix...

1.  Deploy the latest version of apache like 2.4....
2.  The site config

<VirtualHost *:80>
# serverAdmin webmaster@localhost
# ServerName dspam.domain.local

# LogLevel debug
SuexecUserGroup dspam dspam
Addhandler cgi-script .cgi
Options +ExecCGI -Indexes

DocumentRoot /var/www/dspam

    ErrorDocument 401 /login.html

    Session On
    SessionCookieName session path=/
    SessionCryptoPassphrase secret

    <Location />
        AuthFormProvider ldap file
        AuthType form
        AuthName "DSPAM Authentication"
        AuthFormLoginRequiredLocation http://dspam.domain.local/login.html
        AuthLDAPBindDN "CN=LDAP Lookup,OU=Service
        AuthLDAPBindPassword "password"
        AuthUserFile /etc/dspam/webfrontend.htpasswd
        LDAPReferrals Off
        Require valid-user

    <Location /login.html>
        Order allow,Deny
        Allow from all
        require all granted

    <location /logout>
        SetHandler form-logout-handler
        AuthName "DSPAM Authentication"
        AuthFormLogoutLocation http://dspam.domain.local/login.html

    <Location /dologin.html>
      SetHandler form-login-handler
      AuthType form
      AuthName "DSPAM Authentication"
      AuthFormProvider ldap file
      AuthUserFile /etc/dspam/webfrontend.htpasswd
      AuthFormLoginRequiredLocation http://dspam.domain.local/login.html

#    ErrorLog logs/DSPAMError_log
#    CustomLog logs/DSPAMAccess_log common

3. login.html

<head><title>Test Login</title></head>

<form method="POST" action="/dologin.html">
    Username: <input type="text" name="httpd_username" value="" />
    Password: <input type="password" name="httpd_password" value="" />
    <input type="submit" name="login" value="Login" />
    <input type="hidden" name="httpd_location"
value="http://dspam.domain.local/dspam.cgi" />


4.  in dspam.cgi, add

if ($FORM{'template'} eq "logout") {

 5. in template add logout menu botton.

Managing the Performance of Cloud-Based Applications
Take advantage of what the Cloud has to offer - Avoid Common Pitfalls.
Read the Whitepaper.
Dspam-user mailing list
[hidden email]