X-Git-Url: http://git.freeside.biz/gitweb/?a=blobdiff_plain;f=htetc%2Ffreeside-base2.conf;h=7ea26d3814fc41391b3c9444fb50ccdb204ac1f4;hb=eb8fe191d66b2b6bf7e113049047968c8147fb66;hp=49b4a243dd13767565176290fddaffe15955f53d;hpb=a69f8a2b55163b5f0eac908918e46a3eb3bd2290;p=freeside.git
diff --git a/htetc/freeside-base2.conf b/htetc/freeside-base2.conf
index 49b4a243d..7ea26d381 100644
--- a/htetc/freeside-base2.conf
+++ b/htetc/freeside-base2.conf
@@ -6,36 +6,75 @@ PerlModule HTML::Mason
PerlSetVar MasonArgsMethod CGI
PerlModule HTML::Mason::ApacheHandler
-PerlChildInitHandler "sub { srand }"
-
PerlRequire "%%%MASON_HANDLER%%%"
+PerlChildInitHandler FS::Mason::child_init
+
#Locale::SubCountry
-#
AddDefaultCharset UTF-8
+PerlModule FS::AuthCookieHandler
+
+#XXX need to also work properly for installs w/o /freeside/ in path
+PerlSetVar FreesideLoginScript /freeside/loginout/login.html
+
+#disables HTTP, so HTTPS only
+#PerlSetVar FreesideSecure 1
+
+#prevents cookie theft via JS
+PerlSetVar FreesideHttpOnly 1
+
-AuthName Freeside
-AuthType Basic
-AuthUserFile %%%FREESIDE_CONF%%%/htpasswd
-require valid-user
-
-SetHandler perl-script
-PerlHandler HTML::Mason
+
+ AuthName Freeside
+ AuthType FS::AuthCookieHandler
+ PerlAuthenHandler FS::AuthCookieHandler->authenticate
+ PerlAuthzHandler FS::AuthCookieHandler->authorize
+ require valid-user
+
+
+ SetHandler perl-script
+ PerlHandler HTML::Mason
+
+
+
+
+
+ AuthName Freeside
+ AuthType FS::AuthCookieHandler
+ SetHandler perl-script
+ PerlHandler FS::AuthCookieHandler->login
+
+
+
+ Satisfy any
+
+
+
+ Deny from all
+ SetHandler None
+
+
-SetHandler perl-script
-PerlHandler HTML::Mason
+ SetHandler perl-script
+ PerlHandler HTML::Mason
-
-AuthName Freeside
-AuthType Basic
-AuthUserFile %%%FREESIDE_CONF%%%/htpasswd.logout
-require valid-user
-
-SetHandler default-handler
-
+
+ Satisfy any
+
+
+
+ Satisfy any
+ SetHandler perl-script
+ PerlHandler HTML::Mason
+
+
+
+ Satisfy any
+ SetHandler perl-script
+ PerlHandler HTML::Mason