46 lines
1.3 KiB
Plaintext
46 lines
1.3 KiB
Plaintext
LoadModule ssl_module modules/mod_ssl.so
|
|
LoadModule proxy_module modules/mod_proxy.so
|
|
LoadModule proxy_html_module modules/mod_proxy_html.so
|
|
LoadModule proxy_connect_module modules/mod_proxy_connect.so
|
|
LoadModule proxy_http_module modules/mod_proxy_http.so
|
|
LoadModule proxy_http2_module modules/mod_proxy_http2.so
|
|
|
|
<VirtualHost *:80>
|
|
ServerName localhost
|
|
Redirect / https://localhost/
|
|
</VirtualHost>
|
|
|
|
<VirtualHost *:443>
|
|
ServerName https://localhost
|
|
ProxyRequests Off
|
|
ProxyPreserveHost On
|
|
DocumentRoot /var/www
|
|
LoadModule auth_mellon_module /usr/local/apache2/modules/mod_auth_mellon.so
|
|
|
|
SSLEngine On
|
|
SSLCertificateFile /usr/local/apache2/ssl/apache-selfsigned.crt
|
|
SSLCertificateKeyFile /usr/local/apache2/ssl/apache-selfsigned.key
|
|
|
|
ProxyRequests Off
|
|
ProxyPass /mellon/ !
|
|
ProxyPass /healthcheck/ !
|
|
ProxyPass / http://grafana:3000/
|
|
ProxyPassReverse / http://grafana:3000/
|
|
|
|
RequestHeader set X-WEBAUTH-USER %{MELLON_NAME_ID}e
|
|
RequestHeader set X-Forwarded-Proto "https"
|
|
|
|
<Location / >
|
|
AuthType Mellon
|
|
MellonEnable auth
|
|
Require valid-user
|
|
|
|
MellonEndpointPath /mellon/
|
|
MellonSPMetadataFile /etc/httpd/saml2/mellon_metadata.xml
|
|
MellonSPPrivateKeyFile /etc/httpd/saml2/mellon.key
|
|
MellonSPCertFile /etc/httpd/saml2/mellon.crt
|
|
MellonIdPMetadataFile /etc/httpd/saml2/idp_metadata.xml
|
|
</Location>
|
|
|
|
|
|
</VirtualHost> |