personnal customer access for .... customers :-)
list Grégory Bulot
Hello all,
I would like to give access for different customer on their pages, is
it possible ?
my actual struct ("pages") seem like that :
* https://XYMON/xymon/CLIENTS/customer01
* https://XYMON/xymon/CLIENTS/customer02
* https://XYMON/xymon/CLIENTS/customer03
* ...
Howto authorized
* customer01 to go only to xymon/CLIENTS/customer01
* customer02 to go only to xymon/CLIENTS/customer02
* customer03 to go only to xymon/CLIENTS/customer03
...
* and me (admin) to go everywhere ?
Of course customer can't use
* "views" menu
* "reports" menu
* "administration" menu
==> except if i can limit for each CLIENT/customer
i have a look to xymongen ... by i'm not undersdant how to use it to
limit only CLIENTS/customerXX
i heard about xymonproxy, but i'm sure to understand how to use it for
my use.
--
Cordialement,
Gr?gory
list Kris Springer
I do this by password protecting my page folders with .htaccess and .htpasswd. Kris Springer
▸
On 9/16/19 9:04 AM, user-ba12ef048dd6@xymon.invalid wrote:Hello all,
I would like to give access for different customer on their pages, is
it possible ?
my actual struct ("pages") seem like that :
* https://XYMON/xymon/CLIENTS/customer01
* https://XYMON/xymon/CLIENTS/customer02
* https://XYMON/xymon/CLIENTS/customer03
* ...
Howto authorized
* customer01 to go only to xymon/CLIENTS/customer01
* customer02 to go only to xymon/CLIENTS/customer02
* customer03 to go only to xymon/CLIENTS/customer03
...
* and me (admin) to go everywhere ?
Of course customer can't use
* "views" menu
* "reports" menu
* "administration" menu
==> except if i can limit for each CLIENT/customer
i have a look to xymongen ... by i'm not undersdant how to use it to
limit only CLIENTS/customerXX
i heard about xymonproxy, but i'm sure to understand how to use it for
my use.
list Grégory Bulot
Le Mon, 16 Sep 2019 09:40:16 -0600, Kris Springer <user-c2caa0a7a8d5@xymon.invalid> a ?crit :
▸
I do this by password protecting my page folders with .htaccess and .htpasswd.
It's easy to make and easy to maintain, but about menu how to block ?
list Stephen Carville Xymon List
On 9/16/19 10:00 PM, user-ba12ef048dd6@xymon.invalid wrote:
Lereta Email Checkpoint: External email. Please make sure you trust this source before clicking links or opening attachments.
▸
********************************************************************** Le Mon, 16 Sep 2019 09:40:16 -0600, Kris Springer <user-c2caa0a7a8d5@xymon.invalid> a ?crit :I do this by password protecting my page folders with .htaccess and .htpasswd.It's easy to make and easy to maintain, but about menu how to block ?
The menu is defined using css so I think you might be able to do something in your .htaccess file to tell the web browser to pick up a customized css file. Not sure how to do this though. A simple Alias like: Alias /xymon/menu /var/xymon/server/www/nomenu will run afoul of the Alias for /xymon in httpd.conf. It doesn't look like a simple change. -- Stephen
list Grégory Bulot
▸
Le Mon, 16 Sep 2019 09:40:16 -0600, Kris Springer <user-c2caa0a7a8d5@xymon.invalid> a ?crit :
I do this by password protecting my page folders with .htaccess and .htpasswd.
And how to protect customer A to look at Host from other Customer via svcstatus ? Example, 'customer A' check that, no way to protect ? http://XYMONSRV/xymon-cgi/svcstatus.sh?HOST=CustomerB_HOST001&SERVICE=http -- Cordialement, Gr?gory Bulot
list Andy Smith
Hi, It takes some careful organisation, but this can be done quite easily in anything newer than 4.3.6 :- New access control mechanism for some CGI scripts returning host-specific information. Access optionally checked against an Apache-style "group" file (see xymonwebaccess(5) CGI manpage). -- Andy
▸
On 24/09/2019 10:51, user-ba12ef048dd6@xymon.invalid wrote:Le Mon, 16 Sep 2019 09:40:16 -0600, Kris Springer <user-c2caa0a7a8d5@xymon.invalid> a ?crit :I do this by password protecting my page folders with .htaccess and .htpasswd.And how to protect customer A to look at Host from other Customer via svcstatus ? Example, 'customer A' check that, no way to protect ? http://XYMONSRV/xymon-cgi/svcstatus.sh?HOST=CustomerB_HOST001&SERVICE=http