Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Hiding OWA behind HTTP-AUTH #417

joho1968 opened this issue Aug 21, 2019 · 2 comments


Copy link

commented Aug 21, 2019

It'd be nice if the main part of an external OWA installation could be "hidden" (or "protected") behind a simple HTTP-AUTH (just to let the web server take the first hit instead of PHP) but still allow for statistics collection.

Perhaps this is a web server configuration issue though (in my case, nginx), in which case the documentation wiki could be a good place to explain how to accomplish this.


This comment has been minimized.

Copy link

commented Aug 21, 2019

You probably want to reverse-proxy everything except the collector with basic http-auth. A nativ implementation would be (in my opinion) not useful for enough people.


This comment has been minimized.

Copy link

commented Sep 6, 2019

What would the stats collect in? the web server log file?

It's possible that OWA's async tracking event processor could be modified to read/parse an a non-OWA log format. That's where i would start.

Right now when you put OWA into async tracking mode, the PHP endpoint just writes the incoming tracking request data to an OWA events log file. OWA is then evoked on the command line to process that file(s).

The events log file processor is well abstracted already so it's just an issue of writing a custom or configurable parser and putting in the proper config switches to tell OWA to use that instead of the default file processor.

@padams padams added the enhancement label Sep 6, 2019

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
None yet
3 participants
You can’t perform that action at this time.