<IfModule mod_proxy.c>
	<Proxy *>
	Order deny,allow
	Allow from all
	</Proxy>

	# ReverseProxy
	ProxyRequests Off
	ProxyPass /phpldapadmin !
	ProxyPass / http://localhost:4000/
	ProxyPassReverse / http://localhost:4000/

	RequestHeader set REMOTE_USER %{REMOTE_USER}e env=REMOTE_USER
	RequestHeader set SSL_CLIENT_S_DN %{SSL_CLIENT_S_DN}s
	RequestHeader set SSL_CLIENT_S_DN_Email %{SSL_CLIENT_S_DN_Email}s
</IfModule>

<IfModule mod_cache.c>
	CacheDisable /
</IfModule>

<Location />
Satisfy              any

SSLVerifyClient      optional
SSLVerifyDepth       2
SSLOptions           +FakeBasicAuth +StdEnvVars
#SSLOptions           +FakeBasicAuth +StrictRequire +StdEnvVars
#SSLRequire           %{SSL_CLIENT_S_DN_OU} == "UMR8190" and %{SSL_CLIENT_S_DN_O} == "CNRS"

#AuthType             basic
#AuthName             "Protected Intranet Area"
#AuthzLDAPMethod ldap
#AuthzLDAPServer "ldap.aero.jussieu.fr"
#AuthzLDAPMapBase dc=latmos,dc=ipsl,dc=fr
#AuthzLDAPUserScope subtree
#AuthzLDAPUserBase dc=latmos,dc=ipsl,dc=fr
#AuthzLDAPUserKey uid
#AuthzLDAPRoleAttributeName uid
#AuthzLDAPMapUserToAttr      uid
#AuthzLDAPSetGroupAuth       map
#AuthzLDAPMemberKey          memberUid
#Require valid-user

Allow from all
</Location>