nginx-site: xml/en/docs/http/ngx_http_auth_basic

comparison xml/en/docs/http/ngx_http_auth_basic_module.xml @ 655:93d2a54d247c

Added information about supported password types.

author	Vladimir Homutov <vl@nginx.com>
date	Mon, 27 Aug 2012 12:40:50 +0000
parents	764fbac1b8b4
children	7d15bd7fc58d

comparison

equal deleted inserted replaced

-:841118e33f41
+:93d2a54d247c
 <!DOCTYPE module SYSTEM "../../../../dtd/module.dtd">
 <module name="Module ngx_http_auth_basic_module"
 link="/en/docs/http/ngx_http_auth_basic_module.html"
 lang="en"
-rev="1">
+rev="2">
 <section id="summary">
 <para>
 The <literal>ngx_http_auth_basic_module</literal> module allows
 name3:password3
 </example>
 </para>
 <para>
-Passwords should be encrypted with the <c-func>crypt</c-func> function.
+The following password types are supported:
-The <command>htpasswd</command> command from the Apache web server
+<list type="bullet">
-distribution can be used to create such a file.
+<listitem>
+encrypted with the <c-func>crypt</c-func> function; can be generated using
+the “<command>htpasswd</command>” utility from the Apache HTTP Server
+distribution or the “<command>openssl passwd</command>” command;
+</listitem>
+<listitem>
+hashed with the Apache variant of the MD5-based password algorithm (apr1);
+can be generated with the same tools;
+</listitem>
+<listitem>
+specified by the
+“<literal>{</literal><value>scheme</value><literal>}</literal><value>data</value>”
+syntax (1.0.3+) as described in
+<link url="http://tools.ietf.org/html/rfc2307#section-5.3">RFC 2307</link>;
+currently implemented schemes include <literal>PLAIN</literal> (an example one,
+should not be used) and <literal>SSHA</literal> (salted SHA-1 hashing, used
+by some software packages, notably OpenLDAP and Dovecot).
+</listitem>
+</list>
 </para>
 </directive>
 </section>

Mercurial > hg > nginx-site

comparison xml/en/docs/http/ngx_http_auth_basic_module.xml @ 655:93d2a54d247c