[MS4W-Users] securing map services?
Rahkonen Jukka (MML)
jukka.rahkonen at maanmittauslaitos.fi
Tue Feb 5 10:51:35 EST 2019
Hi,
Here is one rather flexible way to require certain user for reaching a specific address. Logical steps are
1. If user wants to reach address http://your.server.org/cgi-bin/my_wms the address is rewritten to http://your.server.org/cgi-bin/mapserv and mapfile is set to home/my_maps/my_wms.map
2. Address http://your.server.org/cgi-bin/my_wms is set to only allow users vip_user and power_user.
You need to add a block like this into your httpd.conf
RewriteRule ^/cgi-bin/my_wms$ /cgi-bin/mapserv [L,E=MS_MAPFILE:${HOME}/my_maps/my_wms.map]
<Location "/cgi-bin/my_wms">
Require user vip_user power_user
</Location>
That way you can define several independent contact points, each one using a different mapfile and open for just those users you want.
-Jukka Rahkonen-
Lähettäjä: MS4W-Users [mailto:ms4w-users-bounces at lists.ms4w.com] Puolesta Mark Volz via MS4W-Users
Lähetetty: 5. helmikuuta 2019 17:24
Vastaanottaja: ms4w-users at lists.ms4w.com
Kopio: Mark Volz <MarkVolz at co.lyon.mn.us>
Aihe: [MS4W-Users] securing map services?
Hello,
I know it is possible to secure Apache websites using mod_auth_basic, which requires users to have a username and password to access the site. Is there any equivalent way to lock map files down as well so that the hidden internal map files only respond if a user is signed into apache?
Thank You
Sincerely,
Mark Volz, GISP
Lyon County GIS Coordinator
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ms4w.com/pipermail/ms4w-users/attachments/20190205/f0e293d4/attachment-0001.html>
More information about the MS4W-Users
mailing list