Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [cross-project-issues-dev] [Hudson] access to Hudson build configurations is public

Oisin Hurley wrote:
Maybe the most lightweight action to take now is let apache
do the securing [1]?
  
We already have that in place, except we use LDAP, and we use SSL to protect your committer ids.

    SSLProxyEngine On
    ProxyPreserveHost on
    ProxyPass /hudson https://localhost:8443/hudson
    ProxyPassReverse /hudson https://localhost:8443/hudson

   <Location /hudson/>
      AuthType Basic
      AuthName "Eclipse Account"
      AuthBasicProvider ldap
      AuthLDAPURL ldap://ldapmaster:389/ou=people,dc=eclipse,dc=org
      Require ldap-group cn=callisto-dev,ou=group,dc=eclipse,dc=org
   </Location>


Any other ideas?

--
Denis Roy


Back to the top