mirror of
https://github.com/Luzifer/nginx-sso.git
synced 2024-11-14 12:12:41 +00:00
Add documentation for @_authenticated
parent
86aff442ab
commit
2668ad3ce7
1 changed files with 3 additions and 1 deletions
|
@ -97,4 +97,6 @@ Each `rules` entry has two mandantory and three optional fields of which at leas
|
||||||
- `regexp` - optional - String containing a regexp which must match the contents of the header selected by `field`
|
- `regexp` - optional - String containing a regexp which must match the contents of the header selected by `field`
|
||||||
- `equals` - optional - String which must fully match the contents of the header selected by `field`
|
- `equals` - optional - String which must fully match the contents of the header selected by `field`
|
||||||
|
|
||||||
The `allow` and `deny` directives are arrays of users and groups. Groups are prefixed using an `@` sign. There is a simple logic: Users before groups, denies before allows. So if you allow the group `@test` containing the user `mike` but deny the user `mike`, mike will not be able to access the matching sites.
|
The `allow` and `deny` directives are arrays of users and groups. Groups are prefixed using an `@` sign. There is a simple logic: Users before groups, denies before allows. So if you allow the group `@test` containing the user `mike` but deny the user `mike`, mike will not be able to access the matching sites.
|
||||||
|
|
||||||
|
A special group exists for all authenticated users: `@_authenticated`. This group does not need to be assigned to an user but automatically contains all logged in users. You can use that group in the `allow` directive to have all users with a valid login be able to access the resource.
|
Loading…
Reference in a new issue