Hello, I follow auth guideline to configure “/etc/ood/config/ood_portal.yml”, and when “ShibRequestSetting requireSession 1” is appened, httpd24-httpd service can’t startup. It reports: " httpd-scl-wrapper[7714]: Invalid command ‘ShibRequestSetting’, perhaps misspelled or defined by a module no…uration". So what should I set about “ShibRequestSetting”.
1.4. Sanitize Session Information
You will need to sanitize any session-specific request headers that may be passed to the backend web servers that a user is proxied to. For most Apache authentication modules there are module-specific directives that can be enabled to wipe session information from being passed as headers (e.g., OIDCStripCookies ...
). In other cases you may have to use regular expressions to search for the session cookies and remove them manually.
auth:
- ‘AuthType shibboleth’
- ‘ShibRequestSetting requireSession 1’
- ‘RequestHeader edit* Cookie “(^shibsession[^;](;\s)?|;\s*shibsession[^;]*)” “”’
- ‘RequestHeader unset Cookie “expr=-z %{req:Cookie}”’
- ‘Require valid-user’