You have to set the mod_cas on the reverse proxy too... :
On the reverse proxy, set this kind of access :
ProxyPass / http://internal_address/external/
ProxyPassReverse / http://internal_address/external/
protect it with mod_cas
On the internal server, you have to tell not to require authentication for
requests coming from the reverse proxy (as they are already authenticated) :
<Location />
Require valid-user
Authtype CAS
Allow from [myreverse]
Satisfy any
</Location>
Romain
Mikael Kermorgant a écrit :
> Hello,
>
> I have a web page that is either :
> - accessed directly for internal users of the enterprise
> - accessed via a reverse proxy on our DMZ for external users
>
> I've tried to set up mod_cas on the apache server serving the web
> page. It works inside, not for external users. External users get
> redirected to the CAS server for logon. It logon is ok, they get
> redirected to internal address, which is unaccessible from the
> outside...
>
> Here's what I have on the reverse proxy :
> ProxyPass / http://internal_address/
>
> Is there anything I can configure to get a working setup ?
>
> Thanks in advance,
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
