[Change Request] Make sure inactive accounts can't auth to other webapps
Jon Stanley
jonstanley at gmail.com
Sat Mar 21 20:59:26 UTC 2009
---
configs/system/nagios-http.conf.erb | 1 +
configs/web/balancer.conf.erb | 1 +
configs/web/cacti-secure.conf.erb | 1 +
configs/web/exclude.conf.erb | 1 +
4 files changed, 4 insertions(+), 0 deletions(-)
diff --git a/configs/system/nagios-http.conf.erb b/configs/system/nagios-http.conf.erb
index e845f48..4c04ccc 100644
--- a/configs/system/nagios-http.conf.erb
+++ b/configs/system/nagios-http.conf.erb
@@ -14,6 +14,7 @@ ScriptAlias /tac.cgi /usr/lib64/nagios/cgi-bin/tac.cgi
Auth_PG_pwd_table people
Auth_PG_uid_field username
Auth_PG_pwd_field password
+ Auth_PG_whereclause " and status='active'"
require valid-user
</Location>
diff --git a/configs/web/balancer.conf.erb b/configs/web/balancer.conf.erb
index eae1fb4..81212db 100644
--- a/configs/web/balancer.conf.erb
+++ b/configs/web/balancer.conf.erb
@@ -16,6 +16,7 @@ RewriteRule ^/balancer.* /balancer$1 [L]
Auth_PG_pwd_table people
Auth_PG_uid_field username
Auth_PG_pwd_field password
+ Auth_PG_whereclause " and status='active'"
Auth_PG_grp_table user_group
Auth_PG_grp_user_field username
Auth_PG_grp_group_field groupname
diff --git a/configs/web/cacti-secure.conf.erb b/configs/web/cacti-secure.conf.erb
index f5b909c..3178fb2 100644
--- a/configs/web/cacti-secure.conf.erb
+++ b/configs/web/cacti-secure.conf.erb
@@ -10,6 +10,7 @@
Auth_PG_pwd_table people
Auth_PG_uid_field username
Auth_PG_pwd_field password
+ Auth_PG_whereclause " and status='active'"
require valid-user
diff --git a/configs/web/exclude.conf.erb b/configs/web/exclude.conf.erb
index fd87430..d98dd37 100644
--- a/configs/web/exclude.conf.erb
+++ b/configs/web/exclude.conf.erb
@@ -19,6 +19,7 @@
Auth_PG_pwd_table people
Auth_PG_uid_field username
Auth_PG_pwd_field password
+ Auth_PG_whereclause " and status='active'"
require valid-user
Order deny,allow
deny from all
--
1.5.5.6
More information about the Fedora-infrastructure-list
mailing list