From: Rich Bowen Date: Sun, 11 Dec 2005 20:40:18 +0000 (+0000) Subject: Added some details about choosing an alternate auth provider. X-Git-Tag: 2.2.1~201 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=9ca2153ed500676be6be33adf39e3f0f81578f8f;p=thirdparty%2Fapache%2Fhttpd.git Added some details about choosing an alternate auth provider. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.2.x@356011 13f79535-47bb-0310-9956-ffa450edef68 --- diff --git a/docs/manual/howto/auth.html.en b/docs/manual/howto/auth.html.en index bd189bee480..226b7da0f0f 100644 --- a/docs/manual/howto/auth.html.en +++ b/docs/manual/howto/auth.html.en @@ -35,6 +35,7 @@
  • Letting more than one person in
  • Possible problems
    • +
  • Alternate password storage
  • More information
    • top
    @@ -233,7 +234,7 @@ module from each group.

    in this case, optional, since file is the default value for this directive. You'll need to use this directive if you are choosing a different source for authentication, such as - mod_authn_dbm or mod_auth_dbd.

    + mod_authn_dbm or mod_authn_dbd.

    The AuthUserFile directive sets the path to the password file that we just @@ -292,6 +293,8 @@ person in

    AuthType Basic
    AuthName "By Invitation Only"
    + # Optional line: + AuthBasicProvider file AuthUserFile /usr/local/apache/passwd/passwords
    AuthGroupFile /usr/local/apache/passwd/groups
    Require group GroupName @@ -340,6 +343,33 @@ person in different authentication method at that time.

    top
    +

    Alternate password storage

    + +

    Because storing passwords in plain text files has the above + problems, you may wish to store your passwords somewhere else, such + as in a database.

    + +

    mod_authn_dbm and mod_authn_dbd + are two modules which make this possible. Rather than selecting + AuthBasicSource file, + instead you can choose dbm or dbd as your + storage format.

    + +

    To select a dbd file rather than a text file, for example:

    + +

    + <Directory /www/docs/private>
    + AuthName "Private"
    + AuthType Basic
    + AuthBasicProvider dbm
    + AuthDBMUserFile /www/passwords/passwd.dbm
    + Require valid-user +

    + +

    Other options are available. Consult the + mod_authn_dbm documentation for more details.

    +
    top
    +

    More information

    You should also read the documentation for mod_auth_basic and mod_authz_host which diff --git a/docs/manual/howto/auth.xml b/docs/manual/howto/auth.xml index cb6d0608329..f0b3d397406 100644 --- a/docs/manual/howto/auth.xml +++ b/docs/manual/howto/auth.xml @@ -230,7 +230,7 @@ module from each group.

    in this case, optional, since file is the default value for this directive. You'll need to use this directive if you are choosing a different source for authentication, such as - mod_authn_dbm or mod_auth_dbd.

    + mod_authn_dbm or mod_authn_dbd.

    The AuthUserFile directive sets the path to the password file that we just @@ -293,6 +293,8 @@ person in AuthType Basic
    AuthName "By Invitation Only"
    + # Optional line: + AuthBasicProvider file AuthUserFile /usr/local/apache/passwd/passwords
    AuthGroupFile /usr/local/apache/passwd/groups
    Require group GroupName @@ -341,6 +343,33 @@ person in different authentication method at that time.

    +
    Alternate password storage + +

    Because storing passwords in plain text files has the above + problems, you may wish to store your passwords somewhere else, such + as in a database.

    + +

    mod_authn_dbm and mod_authn_dbd + are two modules which make this possible. Rather than selecting + AuthBasicSource file, + instead you can choose dbm or dbd as your + storage format.

    + +

    To select a dbd file rather than a text file, for example:

    + + + <Directory /www/docs/private>
    + AuthName "Private"
    + AuthType Basic
    + AuthBasicProvider dbm
    + AuthDBMUserFile /www/passwords/passwd.dbm
    + Require valid-user +     + +

    Other options are available. Consult the + mod_authn_dbm documentation for more details.

    +
    +
    More information

    You should also read the documentation for mod_auth_basic and mod_authz_host which