subject:"\[Bacula\-users\] Baculum LDAP"

Re: [Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

2023-02-05 Thread Marcin Haba

Hello d09,

Yes, you can. In the documentation is written for the local user
authentication:

"This type of authentication is realized by HTML form in the Baculum Web.
Once this method is enabled, the web server basic authentication can be
disabled."

Best regards,
Marcin Haba (gani)

On Sun, 5 Feb 2023 at 18:00,  wrote:

>
> How do I enable "local user" authentication so I can disable the
> apache-based authentication?  The docs don't say.
>
> ---
>
> On 2/5/2023 6:44 AM, Marcin Haba wrote:
> > Hello Marco,
> >
> > Thanks for confirmation and for the idea to add to the documentation
> > information about disabling the basic authentication.
> >
> > I have added it:
> >
> > https://baculum.app/doc/brief/configuration.html#baculum-web
> > 
> >
> > Best regards,
> > Marcin Haba (gani)
> >
> > On Fri, 3 Feb 2023 at 15:07, Marco Gaiarin  > > wrote:
> >
> > Mandi! Marcin Haba
> >In chel di` si favelave...
> >
> >  > If you use LDAP authentication, all this Apache block with Basic
> > auth can be
> >  > removed. In this place you can write:
> >  >
> >  > # Apache 2.4
> >  > 
> >  >
> >  >Require all granted
> >  >
> >  > 
> >
> > Bingo! It worked!
> >
> >
> > Can be written somewhhere, eg in documentation and/or in the apache
> > virtualhost file example?
> >
> > I've written, for example:
> >
> >  # Apache 2.4
> >  
> >  
> >  # Using 'HTTP Basic' authentication,
> > comment for other method.
> >  #SetEnvIf Request_URI "^/web/redirect$"
> > noauth=1
> >  #
> >  #   
> >  #   
> >  #   Require env noauth
> >  #   Require env
> > REDIRECT_noauth
> >  #   
> >  #   Require all granted
> >  #   
> >  #   
> >  #   AuthType Basic
> >  #   AuthName "Baculum Auth"
> >  #   AuthUserFile
> > /usr/share/baculum/htdocs/protected/Web/Config/baculum.users
> >  #   Require not env noauth
> >  #   Require not env
> REDIRECT_noauth
> >  #   Require valid-user
> >  #   
> >  #
> >
> >  # Using 'Local user' or 'LDAP'
> > authentication, comment for 'HTTP Basic'.
> >  Require all granted
> >  
> >  
> >
> >
> > Thanks!
> >
> >
> > ___
> > Bacula-users mailing list
> > Bacula-users@lists.sourceforge.net
> > 
> > https://lists.sourceforge.net/lists/listinfo/bacula-users
> > 
> >
> >
> >
> > --
> > "Greater love hath no man than this, that a man lay down his life for
> > his friends." Jesus Christ
> >
> > "Większej miłości nikt nie ma nad tę, jak gdy kto życie swoje kładzie za
> > przyjaciół swoich." Jezus Chrystus
> >
> >
> > ___
> > Bacula-users mailing list
> > Bacula-users@lists.sourceforge.net
> > https://lists.sourceforge.net/lists/listinfo/bacula-users
>
>
> ___
> Bacula-users mailing list
> Bacula-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/bacula-users
>


-- 
"Greater love hath no man than this, that a man lay down his life for his
friends." Jesus Christ

"Większej miłości nikt nie ma nad tę, jak gdy kto życie swoje kładzie za
przyjaciół swoich." Jezus Chrystus
___
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users

Re: [Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

2023-02-05 Thread d09



How do I enable "local user" authentication so I can disable the 
apache-based authentication?  The docs don't say.


---

On 2/5/2023 6:44 AM, Marcin Haba wrote:

Hello Marco,

Thanks for confirmation and for the idea to add to the documentation 
information about disabling the basic authentication.


I have added it:

https://baculum.app/doc/brief/configuration.html#baculum-web 



Best regards,
Marcin Haba (gani)

On Fri, 3 Feb 2023 at 15:07, Marco Gaiarin > wrote:


Mandi! Marcin Haba
   In chel di` si favelave...

 > If you use LDAP authentication, all this Apache block with Basic
auth can be
 > removed. In this place you can write:
 >
 > # Apache 2.4
 > 
 >        
 >                Require all granted
 >        
 > 

Bingo! It worked!


Can be written somewhhere, eg in documentation and/or in the apache
virtualhost file example?

I've written, for example:

         # Apache 2.4
         
                 
                         # Using 'HTTP Basic' authentication,
comment for other method.
                         #SetEnvIf Request_URI "^/web/redirect$"
noauth=1
                         #
                         #       
                         #               
                         #                       Require env noauth
                         #                       Require env
REDIRECT_noauth
                         #               
                         #               Require all granted
                         #       
                         #       
                         #               AuthType Basic
                         #               AuthName "Baculum Auth"
                         #               AuthUserFile
/usr/share/baculum/htdocs/protected/Web/Config/baculum.users
                         #               Require not env noauth
                         #               Require not env REDIRECT_noauth
                         #               Require valid-user
                         #       
                         #

                         # Using 'Local user' or 'LDAP'
authentication, comment for 'HTTP Basic'.
                         Require all granted
                 
         


Thanks!


___
Bacula-users mailing list
Bacula-users@lists.sourceforge.net

https://lists.sourceforge.net/lists/listinfo/bacula-users




--
"Greater love hath no man than this, that a man lay down his life for 
his friends." Jesus Christ


"Większej miłości nikt nie ma nad tę, jak gdy kto życie swoje kładzie za 
przyjaciół swoich." Jezus Chrystus



___
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users



___
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users

Re: [Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

2023-02-05 Thread Marcin Haba

Hello Marco,

Thanks for confirmation and for the idea to add to the documentation
information about disabling the basic authentication.

I have added it:

https://baculum.app/doc/brief/configuration.html#baculum-web

Best regards,
Marcin Haba (gani)

On Fri, 3 Feb 2023 at 15:07, Marco Gaiarin  wrote:

> Mandi! Marcin Haba
>   In chel di` si favelave...
>
> > If you use LDAP authentication, all this Apache block with Basic auth
> can be
> > removed. In this place you can write:
> >
> > # Apache 2.4
> > 
> >
> >Require all granted
> >
> > 
>
> Bingo! It worked!
>
>
> Can be written somewhhere, eg in documentation and/or in the apache
> virtualhost file example?
>
> I've written, for example:
>
> # Apache 2.4
> 
> 
> # Using 'HTTP Basic' authentication, comment for
> other method.
> #SetEnvIf Request_URI "^/web/redirect$" noauth=1
> #
> #   
> #   
> #   Require env noauth
> #   Require env REDIRECT_noauth
> #   
> #   Require all granted
> #   
> #   
> #   AuthType Basic
> #   AuthName "Baculum Auth"
> #   AuthUserFile
> /usr/share/baculum/htdocs/protected/Web/Config/baculum.users
> #   Require not env noauth
> #   Require not env REDIRECT_noauth
> #   Require valid-user
> #   
> #
>
> # Using 'Local user' or 'LDAP' authentication,
> comment for 'HTTP Basic'.
> Require all granted
> 
> 
>
>
> Thanks!
>
>
> ___
> Bacula-users mailing list
> Bacula-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/bacula-users
>


-- 
"Greater love hath no man than this, that a man lay down his life for his
friends." Jesus Christ

"Większej miłości nikt nie ma nad tę, jak gdy kto życie swoje kładzie za
przyjaciół swoich." Jezus Chrystus
___
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users

Re: [Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

2023-02-03 Thread Marco Gaiarin

Mandi! Marcin Haba
  In chel di` si favelave...

> If you use LDAP authentication, all this Apache block with Basic auth can be
> removed. In this place you can write:
> 
> # Apache 2.4
> 
>        
>                Require all granted
>        
> 

Bingo! It worked!


Can be written somewhhere, eg in documentation and/or in the apache
virtualhost file example?

I've written, for example:

# Apache 2.4


# Using 'HTTP Basic' authentication, comment for other 
method.
#SetEnvIf Request_URI "^/web/redirect$" noauth=1
#
#   
#   
#   Require env noauth
#   Require env REDIRECT_noauth
#   
#   Require all granted
#   
#   
#   AuthType Basic
#   AuthName "Baculum Auth"
#   AuthUserFile 
/usr/share/baculum/htdocs/protected/Web/Config/baculum.users
#   Require not env noauth
#   Require not env REDIRECT_noauth
#   Require valid-user
#   
#

# Using 'Local user' or 'LDAP' authentication, comment 
for 'HTTP Basic'.
Require all granted




Thanks!


___
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users

Re: [Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

2023-02-02 Thread Marcin Haba

Hello Marco,

If you use LDAP authentication, all this Apache block with Basic auth can
be removed. In this place you can write:

# Apache 2.4

   
   Require all granted
   


Good luck.

Best regards,
Marcin Haba (gani)

On Tue, 31 Jan 2023 at 22:43, Marco Gaiarin  wrote:

>
> I've installed baculum using debian packages, all works as expected and
> flawlessy.
>
> Now i've tried to add LDAP auth support, also successfuly: auth wprks, user
> imported.
>
> But if i try to login, the HTTP 'basic auth' popup of the default user
> 'admin' created in setup phase still want the 'admin' password.
>
> I've understood that (from docs):
>
>  LDAP
>  The Baculum Web can connect to the LDAP server to authenticate LDAP
> users. This method is realized by a HTML form in the Baculum Web.
>  Once this method is enabled, the web server basic authentication can be
> disabled.
>
>
> And i've on the apache virtualhost an entry like:
>
> # Apache 2.4
> 
> 
> SetEnvIf Request_URI "^/web/redirect$" noauth=1
> 
> 
> 
> Require env noauth
> Require env REDIRECT_noauth
> 
> Require all granted
> 
> 
> AuthType Basic
> AuthName "Baculum Auth"
> AuthUserFile
> /usr/share/baculum/htdocs/protected/Web/Config/baculum.users
> Require not env noauth
> Require not env REDIRECT_noauth
> Require valid-user
> 
> 
> 
> 
>
> I have to comment all the entry? Modify how?
>
>
> Thanks.
>
> --
>   STOP. I wanna go home
>   take off this uniform and leave the show  (Pink Floyd)
>
>
>
>
> ___
> Bacula-users mailing list
> Bacula-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/bacula-users
>


-- 
"Greater love hath no man than this, that a man lay down his life for his
friends." Jesus Christ

"Większej miłości nikt nie ma nad tę, jak gdy kto życie swoje kładzie za
przyjaciół swoich." Jezus Chrystus
___
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users

[Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

2023-01-31 Thread Marco Gaiarin



I've installed baculum using debian packages, all works as expected and
flawlessy.

Now i've tried to add LDAP auth support, also successfuly: auth wprks, user
imported.

But if i try to login, the HTTP 'basic auth' popup of the default user
'admin' created in setup phase still want the 'admin' password.

I've understood that (from docs):

 LDAP
 The Baculum Web can connect to the LDAP server to authenticate LDAP users. 
This method is realized by a HTML form in the Baculum Web.
 Once this method is enabled, the web server basic authentication can be 
disabled.


And i've on the apache virtualhost an entry like:

# Apache 2.4


SetEnvIf Request_URI "^/web/redirect$" noauth=1



Require env noauth
Require env REDIRECT_noauth

Require all granted


AuthType Basic
AuthName "Baculum Auth"
AuthUserFile 
/usr/share/baculum/htdocs/protected/Web/Config/baculum.users
Require not env noauth
Require not env REDIRECT_noauth
Require valid-user





I have to comment all the entry? Modify how?


Thanks.

-- 
  STOP. I wanna go home
  take off this uniform and leave the show  (Pink Floyd)




___
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users

Re: [Bacula-users] Baculum LDAP

2022-12-03 Thread Marcin Haba

Hello Nick,

The option that you need to use is placed at the same page as the LDAP
settings, but at the top. It is:

"Default access setting for logged in users not defined in Baculum Web:"

If you select a radio button with label "No access", then only users
imported to Baculum Web will be able to have access to the interface.

Good luck!

Best regards,
Marcin Haba (gani)

On Mon, 28 Nov 2022 at 16:57, Nick Bright  wrote:

> Greetings,
>
> I'm tinkering with the LDAP authentication for Baculum web interface,
> which was very simple to get "working" - but I'm having difficulty
> finding any documentation about filtering the users which are allowed to
> connect.
>
> The issue is that any user is able to log in as a "Normal User", when
> only the ops department should be allowed to log in.
>
> Most systems have a filter where you could specify one (or a list) of
> groups which are allowed, but I'm not seeing such a function.
>
> Is it possible to put proper group based permissions in place with LDAP
> in Baculum?
>
> --
> -
> -  Nick Bright  -
> -  KwiKom Communications-
> -  Office 800-379-7292  -
> -  Direct 620-228-5653  -
> -  Web https://www.kwikom.com/  -
> -
>
>
>
> ___
> Bacula-users mailing list
> Bacula-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/bacula-users
>


-- 
"Greater love hath no man than this, that a man lay down his life for his
friends." Jesus Christ

"Większej miłości nikt nie ma nad tę, jak gdy kto życie swoje kładzie za
przyjaciół swoich." Jezus Chrystus
___
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users

[Bacula-users] Baculum LDAP

2022-11-28 Thread Nick Bright


Greetings,

I'm tinkering with the LDAP authentication for Baculum web interface, 
which was very simple to get "working" - but I'm having difficulty 
finding any documentation about filtering the users which are allowed to 
connect.


The issue is that any user is able to log in as a "Normal User", when 
only the ops department should be allowed to log in.


Most systems have a filter where you could specify one (or a list) of 
groups which are allowed, but I'm not seeing such a function.


Is it possible to put proper group based permissions in place with LDAP 
in Baculum?


--
-
-  Nick Bright  -
-  KwiKom Communications-
-  Office 800-379-7292  -
-  Direct 620-228-5653  -
-  Web https://www.kwikom.com/  -
-



___
Bacula-users mailing list
Bacula-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/bacula-users

Re: [Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

Re: [Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

Re: [Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

Re: [Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

Re: [Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

[Bacula-users] Baculum, LDAP and disable the 'server basic auth'...

Re: [Bacula-users] Baculum LDAP

[Bacula-users] Baculum LDAP

8 matches

Site Navigation

Mail list logo

Footer information