Hello all,
I would like to give access for different customer on their pages, is it possible ?
my actual struct ("pages") seem like that :
- https://XYMON/xymon/CLIENTS/customer01
- https://XYMON/xymon/CLIENTS/customer02
- https://XYMON/xymon/CLIENTS/customer03
- ...
Howto authorized
- customer01 to go only to xymon/CLIENTS/customer01
- customer02 to go only to xymon/CLIENTS/customer02
- customer03 to go only to xymon/CLIENTS/customer03 ...
- and me (admin) to go everywhere ?
Of course customer can't use
- "views" menu
- "reports" menu
- "administration" menu ==> except if i can limit for each CLIENT/customer
i have a look to xymongen ... by i'm not undersdant how to use it to limit only CLIENTS/customerXX
i heard about xymonproxy, but i'm sure to understand how to use it for my use.
-- Cordialement, Gr?gory
I do this by password protecting my page folders with .htaccess and .htpasswd.
Kris Springer
On 9/16/19 9:04 AM, diffusion at bulot-fr.com wrote:
Hello all,
I would like to give access for different customer on their pages, is it possible ?
my actual struct ("pages") seem like that :
- https://XYMON/xymon/CLIENTS/customer01
- https://XYMON/xymon/CLIENTS/customer02
- https://XYMON/xymon/CLIENTS/customer03
- ...
Howto authorized
- customer01 to go only to xymon/CLIENTS/customer01
- customer02 to go only to xymon/CLIENTS/customer02
- customer03 to go only to xymon/CLIENTS/customer03 ...
- and me (admin) to go everywhere ?
Of course customer can't use
- "views" menu
- "reports" menu
- "administration" menu ==> except if i can limit for each CLIENT/customer
i have a look to xymongen ... by i'm not undersdant how to use it to limit only CLIENTS/customerXX
i heard about xymonproxy, but i'm sure to understand how to use it for my use.
On 9/16/19 10:00 PM, diffusion at bulot-fr.com wrote:
Lereta Email Checkpoint: External email. Please make sure you trust this source before clicking links or opening attachments.
Le Mon, 16 Sep 2019 09:40:16 -0600, Kris Springer <kspringer at innovateteam.com> a ?crit :
I do this by password protecting my page folders with .htaccess and .htpasswd.
It's easy to make and easy to maintain, but about menu how to block ?
The menu is defined using css so I think you might be able to do something in your .htaccess file to tell the web browser to pick up a customized css file. Not sure how to do this though. A simple Alias like:
Alias /xymon/menu /var/xymon/server/www/nomenu
will run afoul of the Alias for /xymon in httpd.conf.
It doesn't look like a simple change.
-- Stephen
Le Mon, 16 Sep 2019 09:40:16 -0600, Kris Springer <kspringer at innovateteam.com> a ?crit :
I do this by password protecting my page folders with .htaccess and .htpasswd.
And how to protect customer A to look at Host from other Customer via svcstatus ?
Example, 'customer A' check that, no way to protect ?
http://XYMONSRV/xymon-cgi/svcstatus.sh?HOST=CustomerB_HOST001&SERVICE=http
-- Cordialement, Gr?gory Bulot
Hi,
It takes some careful organisation, but this can be done quite easily in anything newer than 4.3.6 :-
New access control mechanism for some CGI scripts returning host-specific information. Access optionally checked against an Apache-style "group" file (see xymonwebaccess(5) CGI manpage).
--
Andy
On 24/09/2019 10:51, diffusion at bulot-fr.com wrote:
Le Mon, 16 Sep 2019 09:40:16 -0600, Kris Springer <kspringer at innovateteam.com> a ?crit :
I do this by password protecting my page folders with .htaccess and .htpasswd. And how to protect customer A to look at Host from other Customer via svcstatus ?
Example, 'customer A' check that, no way to protect ?
http://XYMONSRV/xymon-cgi/svcstatus.sh?HOST=CustomerB_HOST001&SERVICE=http
participants (4)
-
abs@shadymint.com
-
diffusion@bulot-fr.com
-
kspringer@innovateteam.com
-
scarville@lereta.com