Here is a sample Apache conf file that demonstrates the following
- Reverse proxy to a backend Java application (/ui is proxied to an app running on port 9010).
- LDAP authentication against a local LDAP server running on port 1389
- The REMOTE_USER header is set to the authenticated ldap uid, and passed to the back end Java application.
My purpose here is to have a super light weight proxy that simulates having a "real" Access Management system in front of the application. This is strictly for development. The idea is to move authentication out of the application. In production the application is going to be front ended by a PEP (an Oracle OAM Webgate, for example) that will set the REMOTE_USER header based on the users established SSO session.
Here is the config file