Ood-portal.conf security headers location

karcaw · November 22, 2021, 9:35pm

What is the best way to add apache directives that turn on and off security features? For example, we normally add things like this:

FileETag None
TraceEnable off
Header unset “X-Powered-By”
Header unset “Via”
Header unset “ETag”

to our apache configs. I have been abusing the ssl: yaml tag in my ood_portal.yml file as it seems to get the flags in there appropriately. Is there another tag I should be using? or should I be placing items like that in another config file completely, and not configure it with Open OnDemand?

tdockendorf · November 24, 2021, 9:16pm

What directive do you usually put those under? Is it under the entire VirtualHost or the Directory or a Location? If you are overloading the ssl tag I’m guessing you put these for the entire VirtualHost. You could also overload the auth directive to embed those settings under the various Location and LocationMatch blocks that require authentication.

There is an issue for this: Support adding arbitrary Apache directives to sections of ood-portal.conf · Issue #708 · OSC/ondemand · GitHub - if that proposed solution looks like it might work, let us know and we can try and get this into future 2.1 release

karcaw · December 7, 2021, 6:34pm

Yes i think the solution will work for me

system · June 5, 2022, 6:34pm

This topic was automatically closed 180 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How to insert an alias into apache ood-portal.conf? Get Help ondemand2	2	305	February 28, 2023
Problems securing OOD Get Help	17	292	April 15, 2024
New OOD install: shows me the Apache welcome screen. delete that conf, shows the autoindex. delete that, just get "/." Get Help	15	616	May 3, 2022
Enable HSTS on the web portal Get Help feature-request , question	3	1103	May 19, 2022
Update_ood_portal Not working as expected in ODD 3 Get Help	7	228	February 11, 2024

Ood-portal.conf security headers location

Related Topics