From 60832668bd56ee72794ed606f6332583e8dce4b5 Mon Sep 17 00:00:00 2001 From: Paul Caskey Date: Wed, 25 Aug 2021 17:02:51 +0000 Subject: [PATCH] fix for IdPUI and bypass basic auth for grouper WS --- Workbench/idp_ui/container_files/idp_ui/application.yml | 4 ++-- Workbench/webproxy/container_files/httpd/ssl.conf | 6 ++++++ 2 files changed, 8 insertions(+), 2 deletions(-) diff --git a/Workbench/idp_ui/container_files/idp_ui/application.yml b/Workbench/idp_ui/container_files/idp_ui/application.yml index a7c17b7..cf04975 100644 --- a/Workbench/idp_ui/container_files/idp_ui/application.yml +++ b/Workbench/idp_ui/container_files/idp_ui/application.yml @@ -28,7 +28,7 @@ shibui: forceServiceProviderMetadataGeneration: false callbackUrl: "https://__CSPHOSTNAME__/idpui/callback" maximumAuthenticationLifetime: 3600000 - saml2ProfileMapping: + simpleProfileMapping: username: urn:oid:0.9.2342.19200300.100.1.1 firstname: urn:oid:2.5.4.42 lastname: urn:oid:2.5.4.4 @@ -45,4 +45,4 @@ spring: hibernate: ddl-auto: update - \ No newline at end of file + diff --git a/Workbench/webproxy/container_files/httpd/ssl.conf b/Workbench/webproxy/container_files/httpd/ssl.conf index fbc437a..a0f150a 100644 --- a/Workbench/webproxy/container_files/httpd/ssl.conf +++ b/Workbench/webproxy/container_files/httpd/ssl.conf @@ -152,6 +152,12 @@ SSLCertificateChainFile /etc/pki/tls/certs/server-chain.crt Satisfy any + + Order deny,allow + Allow from all + Satisfy any + + AuthType Basic AuthName "Restricted CSP content"