	cosign-discuss at umich.edu
	general discussion of cosign development and deployment

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Cosign on a Sub Directory Only

To: Beth Bridson <bbridson@xxxxxxxxx>
Subject: Re: Cosign on a Sub Directory Only
From: Mark Montague <markmont@xxxxxxxxx>
Date: Tue, 20 Jul 2004 11:08:50 -0400 (EDT)
Cc: cosign-discuss@xxxxxxxxx
In-reply-to: <BB0B0BFE-DA5B-11D8-B846-00039312D63C@umich.edu>
References: <BB0B0BFE-DA5B-11D8-B846-00039312D63C@umich.edu>

On Tue, 20 Jul 2004, Beth Bridson wrote:

> Can Cosign be configured to work on a sub directory of my web site
> only?  This is Cosign on Apache.

Yes, I do this all the time.  The following example has more
directives than strictly necesssary in it, but will show you
everything involved:

    <Directory /afs/lsa.umich.edu/public/www/lsait-unix/testing/cosign>
      Options Indexes FollowSymLinks IncludesNoExec
      AllowOverride AuthConfig FileInfo Indexes Limit
      Order allow,deny
      Allow from all
      CosignProtected On
      AuthType Cosign
      SSLRequireSSL
      require valid-user
    </Directory>

If you wanted to boil this down to the bare minimum and put
it in a .htaccess file for a directory, the following will
probably do the job:

    CosignProtected On
    SSLRequireSSL
    require valid-user

You can of course change the "require" to anything you want
such as "require user bbridson" or "require group staff" (this
has nothing to do with cosign, though).

                Mark Montague
                LS&A Information Technology
                markmont@xxxxxxxxx

References:
- Cosign on a Sub Directory Only
  - From: Beth Bridson

Prev by Date: Re: Cosign on a Sub Directory Only
Next by Date: Re: Cosign on a Sub Directory Only
Previous by thread: Re: Cosign on a Sub Directory Only
Next by thread: More: Cosign on a Sub Directory Only
Index(es):
- Date
- Thread