Page History
...
If you want to use authorization, you'll have to start by adding the following configuration to shrine.conf, after the existing shrine block:
Code Block | ||||
---|---|---|---|---|
| ||||
shrine { ... } ... shrine.config.authorizer.requireAuthorization = "true" shrine.webclient.ssoLogoutUrl = "https://<your hostname>/shrine-api/authorizer/logout" shrine.config.authorizer.shibLogoutUrl = "https://<your hostname>/Shibboleth.sso/Logout?return=<return URL provided by your idP>" |
First thisYou have the option to tailor the non-authorized message to your needs: uncomment this line and insert the desired text:
Code Block | ||||
---|---|---|---|---|
| ||||
// shrine.webclient.unauthorizedMessage = "You currently do not have access to SHRINE. Please contact your institution's SHRINE administrator for more information." |
The authorization system works with a number of attribute providers which generates "attributes", and each requiring its own configuration, and one authorization provider which determines based on the attribute providers whether the user is authorized or not. Beyond the configuration items above, the config file has the following overall structure
...
Overview
Content Tools