mod_gws (gwsd daemon)
mod_gws (gwsd daemon)
| Description: | Provides the interface between the mod_gws apache module and the external groups web service. |
|---|
In order to protect the credentials used to authenticate to the groups web service a daemon process, gwsd, running as root, performs all communications with the service. The module, mod_gws, interacts only with the daemon.
The daemon can report errors to Argus and to proxd.
| Description: | Starts gwsd.
The program will become a deamon unless '-n' is specified.
|
|---|
| Description: | Specifies the URL template for membership requests. The template is a printf format and should contain two '%s'. The first is for the group name; the second for the member id. |
|---|---|
| Syntax: | AuthURL URL_template
|
AuthURL https://iam-ws.u.washington.edu/group_sws/v1/group/%s/effective_member/%s
| Description: | Specifies the file of acceptable CAs for certificate verification. |
|---|---|
| Syntax: | CertDB file
|
| Description: | Specifies gwsd's authentication certificate (PEM). |
|---|---|
| Syntax: | Cert file
|
| Description: | Specifies gwsd's authentication certificate's key (PEM). |
|---|---|
| Syntax: | Key file
|
| Description: | Specifies socket to listen for module requests. |
|---|---|
| Syntax: | Socket path
|
| Default: | /var/run/gwsd.sock |
Socket /var/run/gwsd.sock
| Description: | Specifies socket to listen for module requests. |
|---|---|
| Syntax: | PidFile path
|
| Default: | /var/run/gwsd.pid |
PidFile /var/run/gwsd.pid
| Description: | Specifies the header to request 'act-as' functionality. Default value is shown in the example. |
|---|---|
| Syntax: | ActAsHeader header_name
|
ActAsHeader X-UW-Act-as
| Description: | Specifies the password file for module authentication. |
|---|---|
| Syntax: | ClientPW file
|
ClientPW /usr/share/gwsd.pw
| Description: | Specifies the syslog facility to use (local[0-7]. |
|---|---|
| Syntax: | Syslog local[0-7]
|
| Default: | syslog
|
Syslog local2