Re: Interest in patch for web interface to enable/disable servers

From: Lincoln Stoll <l#lds.li>
Date: Thu, 9 Sep 2010 16:55:43 +0200


Hi All,

        Is this something that is potentially going to make it in to mainline haproxy? Also Cyril, is there an updated patch around anywhere? I think this provides some interesting functionality.

Cheers,

        Linc.

On 28/07/2010, at 12:44 AM, Cyril Bonté wrote:

> Hi all,
>
> Le mardi 27 juillet 2010 18:03:41, Judd Montgomery a écrit :

>> I like the patch.  It works fine in lynx, which is important to
>> me for remote access and should be scriptable with lynx, curl, and
>> wget.

>
> Nice !
> Well, there was still a little bug which disturbs the tables when using a
> proxy with backend capabilities and no server. I should know that last minute
> change equals last minute bug :-)
>
>> Let me know if you need help with the admin level security.

>
> I took time to work on it tonight.
> Tests, feedbacks and code review are welcome !
>
> To test the code, apply the patch in attachment after the one sent previously.
>
> Then, by default the admin capabilities becomes disabled.
> To enable the admin level, you must specify a new "stats admin {if | unless}
> <condition>" keyword in the configuration (not allowed in defaults to prevent
> security issues)
>
> Example 1 :
> listen stats :80
> mode http
> option httpclose
>
> stats enable
>
> acl LOCAL src 127.0.0.1
> stats admin if LOCAL
>
> Example 2 :
> listen stats :80
> mode http
> option httpclose
>
> stats enable
> stats auth admin:admin
>
> # always enable admin level because an authentication is required
> stats admin if TRUE
>
> --
> Cyril Bonté
> <haproxy-1.4.8-stats-admin-acl-20100727.patch>
Received on 2010/09/09 16:55

This archive was generated by hypermail 2.2.0 : 2010/09/09 17:00 CEST