merenber
/
saml-passthrough
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

use Wants dependency on Apache

This commit is contained in:
Max Erenberg 2022-01-11 23:41:58 -05:00
parent c4f6ffce92
commit af865567df
2 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
README.md
View File

@ -13,9 +13,11 @@ Make sure to renew the cert in ten years.
Add the following snippet to /etc/apache2/sites-real/csc (and make sure mod_proxy_fcgi is enabled):
```
<Location /keycloak/saml/ >
SetHandler "proxy:unix:/run/saml-passthrough/server.sock|fcgi://localhost"
</Location>
<Location /keycloak/saml/sso >
AuthType Mellon
MellonEnable auth
Require valid-user
SetHandler "proxy:unix:/run/saml-passthrough/server.sock|fcgi://localhost"
</Location>
```

4
systemd/saml-passthrough.service
View File

@ -1,7 +1,7 @@
[Unit]
Description=SAML passthrough for Keycloak
Documentation=https://git.csclub.uwaterloo.ca/merenber/saml-passthrough
Requires=apache2.service
Wants=apache2.service
After=apache2.service
[Service]
@ -11,6 +11,8 @@ RuntimeDirectory=saml-passthrough
DynamicUser=yes
LoadCredential=idp.key:/srv/saml-passthrough/idp.key
ExecStart=/srv/saml-passthrough/saml-passthrough -k "${CREDENTIALS_DIRECTORY}/idp.key"
RestartSec=5
Restart=on-failure
[Install]
WantedBy=multi-user.target