Joined: 31 Dec 2004
|Posted: Wed Feb 06, 2019 9:45 pm Post subject: Minimum open valid cupsd.conf policy?
|Greetings all I am setting up some cups servers mostly for testing and I would like the cups server to allow anyone logged in on the local box to do anything (add printers etc) over the web interface with cups asking for no authentication of any kind also google chrome does not implement http auth headers correctly so I would like cups to never send them (I am just talking localhost).
I have been doing this for years and lately I am running into problems where the web interface wanting me to authenticate when adding a printer from google chrome.
When I tested this from firefox it asked for my username and password.
I have been re-reading the man pages and cupsd source code to figure out whats going on.
This is the config I am testing
# Configuration file for the CUPS scheduler. See "man cupsd.conf" for a
# complete description of this file.
# Log general information in error_log - change "warn" to "debug"
# for troubleshooting...
#none emerg alert crit error warn notice info debug debug2
# Only listen for connections from the local machine.
# Show shared printers on the local network.
# Default authentication type, when authentication is required...
#'cupsdDefaultAuthType()' - Get the default AuthType.
#When the default_auth_type is "auto", this function tries to get the GSS
#credentials for the server. If that succeeds we use Kerberos authentication,
#otherwise we do a fallback to Basic authentication against the local user
# note net-print/cups-filters with USE= ipp_autosetup is needed to discover office printer on the network.
#net-print/cups-filters provides cups-browsed
# Also set BrowseRemoteProtocols DNSSD,CUPS
#DefaultAuthType Basic #Setting this to None seems to breaks cups
# Web interface setting...
# Restrict access to the server...
# Restrict access to the admin pages...
# Restrict access to configuration files...
# Restrict access to log files...
# Set the printer/job policy to Open
Donate to Gentoo