AJP authentication expects requests to be pre-authenticated via an external server before arriving at FishEye.
Typically, this would be a web server (e.g. Apache) configured to perform password and role checking for a given URL. If successful, the server forwards the request to the FishEye server via the AJPv13 protocol.
FishEye Configuration
For FishEye to use AJP authentication, the following two values must be configured:
- The AJP Bind Address must be set per FishEye instance. See also Server Settings.
- The user's Auth Type must be set to 'ajp'.
Apache Configuration
mod_proxy_ajp
To configure Apache Httpd to forward all requests to /fisheye
to a Fisheye instance with an AJP Bind address of localhost:8009
, on the same machine, ensure that the proxy_ajp_module
apache module is enabled, and add these lines to the VirtualHost
you wish to serve FishEye through:
ProxyPass /fisheye/ ajp://localhost:8009/fisheye/ nocanon
mod_jk
To configure Apache Httpd so that all requests to Apache Httpd for the path /fisheye
are forwarded to a FishEye instance on the same machine with an AJP Bind Address of localhost:8009
.
Add these lines to your apache configuration:
LoadModule jk_module modules/mod_jk.so JkWorkersFile /path/to/workers.properties JkLogFile /var/log/mod_jk.log JkLogLevel debug JkLogStampFormat "[%a %b %d %H:%M:%S %Y] " JkMount /fisheye/* worker1 JkOptions +ForwardURICompatUnparsed
Then create a file under /path/to/workers.properties
and add:
worker.list=worker1 worker.worker1.type=ajp13 worker.worker1.host=localhost worker.worker1.port=8009