@@ -7582,79 +7582,6 @@ workaround is to create a vhost named something else, such as `my default`, and
75827582` default ` and ` default_ssl ` vhosts are set to ` false ` :
75837583
75847584TODO: check, if this Documentation is obsolete
7585- lint:ignore: parameter_documentation
7586- lint: endignore
7587- Specfies mod_auth_gssapi parameters for particular directories in a virtual host directory
7588- ``` puppet
7589- apache::vhost { 'sample.example.net':
7590- docroot => '/path/to/directory',
7591- directories => [
7592- { path => '/path/to/different/dir',
7593- gssapi => {
7594- acceptor_name => '{HOSTNAME}',
7595- allowed_mech => ['krb5', 'iakerb', 'ntlmssp'],
7596- authname => 'Kerberos 5',
7597- authtype => 'GSSAPI',
7598- basic_auth => true,
7599- basic_auth_mech => ['krb5', 'iakerb', 'ntlmssp'],
7600- basic_ticket_timeout => 300,
7601- connection_bound => true,
7602- cred_store => {
7603- ccache => ['/path/to/directory'],
7604- client_keytab => ['/path/to/example.keytab'],
7605- keytab => ['/path/to/example.keytab'],
7606- },
7607- deleg_ccache_dir => '/path/to/directory',
7608- deleg_ccache_env_var => 'KRB5CCNAME',
7609- deleg_ccache_perms => {
7610- mode => '0600',
7611- uid => 'example-user',
7612- gid => 'example-group',
7613- },
7614- deleg_ccache_unique => true,
7615- impersonate => true,
7616- local_name => true,
7617- name_attributes => 'json',
7618- negotiate_once => true,
7619- publish_errors => true,
7620- publish_mech => true,
7621- required_name_attributes => 'auth-indicators=high',
7622- session_key => 'file:/path/to/example.key',
7623- signal_persistent_auth => true,
7624- ssl_only => true,
7625- use_s4u2_proxy => true,
7626- use_sessions => true,
7627- }
7628- },
7629- ],
7630- }
7631- ```
7632-
7633- lint:ignore: parameter_documentation
7634- lint: endignore
7635- Specifies mod_authz_core parameters for particular directories in a virtual host directory
7636- ``` puppet
7637- apache::vhost { 'sample.example.net':
7638- docroot => '/path/to/directory',
7639- directories => [
7640- { path => '/path/to/different/dir',
7641- authz_core => {
7642- require_all => {
7643- 'require_any' => {
7644- 'require' => ['user superadmin'],
7645- 'require_all' => {
7646- 'require' => ['group admins', 'ldap-group "cn=Administrators,o=Airius"'],
7647- },
7648- },
7649- 'require_none' => {
7650- 'require' => ['group temps', 'ldap-group "cn=Temporary Employees,o=Airius"']
7651- }
7652- }
7653- }
7654- },
7655- ],
7656- }
7657- ```
76587585
76597586#### Examples
76607587
@@ -10290,11 +10217,77 @@ Default value: `[]`
1029010217
1029110218##### <a name =" gssapi " ></a >` gssapi `
1029210219
10293-
10220+ Specfies mod_auth_gssapi parameters for particular directories in a virtual host directory
10221+ ``` puppet
10222+ apache::vhost { 'sample.example.net':
10223+ docroot => '/path/to/directory',
10224+ directories => [
10225+ { path => '/path/to/different/dir',
10226+ gssapi => {
10227+ acceptor_name => '{HOSTNAME}',
10228+ allowed_mech => ['krb5', 'iakerb', 'ntlmssp'],
10229+ authname => 'Kerberos 5',
10230+ authtype => 'GSSAPI',
10231+ basic_auth => true,
10232+ basic_auth_mech => ['krb5', 'iakerb', 'ntlmssp'],
10233+ basic_ticket_timeout => 300,
10234+ connection_bound => true,
10235+ cred_store => {
10236+ ccache => ['/path/to/directory'],
10237+ client_keytab => ['/path/to/example.keytab'],
10238+ keytab => ['/path/to/example.keytab'],
10239+ },
10240+ deleg_ccache_dir => '/path/to/directory',
10241+ deleg_ccache_env_var => 'KRB5CCNAME',
10242+ deleg_ccache_perms => {
10243+ mode => '0600',
10244+ uid => 'example-user',
10245+ gid => 'example-group',
10246+ },
10247+ deleg_ccache_unique => true,
10248+ impersonate => true,
10249+ local_name => true,
10250+ name_attributes => 'json',
10251+ negotiate_once => true,
10252+ publish_errors => true,
10253+ publish_mech => true,
10254+ required_name_attributes => 'auth-indicators=high',
10255+ session_key => 'file:/path/to/example.key',
10256+ signal_persistent_auth => true,
10257+ ssl_only => true,
10258+ use_s4u2_proxy => true,
10259+ use_sessions => true,
10260+ }
10261+ },
10262+ ],
10263+ }
10264+ ```
1029410265
1029510266##### <a name =" authz_core " ></a >` authz_core `
1029610267
10297-
10268+ Specifies mod_authz_core parameters for particular directories in a virtual host directory
10269+ ``` puppet
10270+ apache::vhost { 'sample.example.net':
10271+ docroot => '/path/to/directory',
10272+ directories => [
10273+ { path => '/path/to/different/dir',
10274+ authz_core => {
10275+ require_all => {
10276+ 'require_any' => {
10277+ 'require' => ['user superadmin'],
10278+ 'require_all' => {
10279+ 'require' => ['group admins', 'ldap-group "cn=Administrators,o=Airius"'],
10280+ },
10281+ },
10282+ 'require_none' => {
10283+ 'require' => ['group temps', 'ldap-group "cn=Temporary Employees,o=Airius"']
10284+ }
10285+ }
10286+ }
10287+ },
10288+ ],
10289+ }
10290+ ```
1029810291
1029910292##### <a name =" ssl " ></a >` ssl `
1030010293
0 commit comments