Configure apache to require authentication on…

parent a9a895f4
......@@ -139,6 +139,18 @@ Use https-redirect www.reproducible-builds.org
Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
Require all granted
</Directory>
# Use the sso.debian.org CA to validate client certificates
# Keep these files up to date with update-debsso-ca
SSLCACertificateFile /etc/apache2/ssl/debsso/debsso.crt
SSLCARevocationCheck chain
SSLCARevocationFile /etc/apache2/ssl/debsso/debsso.crl
<Location /cgi-bin/schedule>
# Export data about the certificate to the environment
SSLOptions +StdEnvVars
# Allow access if one does not have a valid certificate,
# so we can show a decent error message
SSLVerifyClient optional
</Location>
<Proxy *>
Require all granted
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment