Restrict access to /admin in httpd conf samples

10 years ago · 3c5e2c86fd
parent b994a46d6e
commit 3c5e2c86fd
2 changed files with 12 additions and 0 deletions
--- a/conf/httpd_alias.conf
+++ b/conf/httpd_alias.conf
@ -42,6 +42,12 @@ ScriptAlias /vroom /opt/vroom/public/vroom.pl
  ExpiresByType text/xml             "access plus 0 seconds"
  ExpiresByType text/html            "access plus 0 seconds"
 </Directory>
+# You should customize this part to access the admin interface
+# VROOM doesn't handle authentication, it's up to you to protect
+# /vroom/admin on your web server
+<Location /vroom/admin>
+  require local
+</Location>
 <Location /socket.io>
  SSLRequireSSL on
 </Location>
--- a/conf/httpd_vhost.conf
+++ b/conf/httpd_vhost.conf
@ -52,5 +52,11 @@
      ExpiresByType text/xml             "access plus 0 seconds"
      ExpiresByType text/html            "access plus 0 seconds"
    </Location>
+    # You should customize this part to access the admin interface
+    # VROOM doesn't handle authentication, it's up to you to protect
+    # /admin on your web server
+    <Location /admin>
+      require local
+    </Location>
 </VirtualHost>