Mercurial > hg > nginx-site
comparison xml/en/docs/http/ngx_http_auth_basic_module.xml @ 966:95c3c3bbf1ce
Text review.
| author | Egor Nikitin <yegor.nikitin@gmail.com> |
|---|---|
| date | Wed, 14 Aug 2013 12:03:41 +0400 |
| parents | 9dab69f2b71d |
| children | 6316a7579448 |
comparison
equal
deleted
inserted
replaced
| 965:fadccc156188 | 966:95c3c3bbf1ce |
|---|---|
| 14 | 14 |
| 15 <section id="summary"> | 15 <section id="summary"> |
| 16 | 16 |
| 17 <para> | 17 <para> |
| 18 The <literal>ngx_http_auth_basic_module</literal> module allows | 18 The <literal>ngx_http_auth_basic_module</literal> module allows |
| 19 to limit access to resources by validating the user name and password | 19 limiting access to resources by validating the user name and password |
| 20 using the “HTTP Basic Authentication” protocol. | 20 using the “HTTP Basic Authentication” protocol. |
| 21 </para> | 21 </para> |
| 22 | 22 |
| 23 <para> | 23 <para> |
| 24 Access can also be limited by | 24 Access can also be limited by |
| 56 | 56 |
| 57 <para> | 57 <para> |
| 58 Enables validation of user name and password using the | 58 Enables validation of user name and password using the |
| 59 “HTTP Basic Authentication” protocol. | 59 “HTTP Basic Authentication” protocol. |
| 60 The specified parameter is used as a <value>realm</value>. | 60 The specified parameter is used as a <value>realm</value>. |
| 61 Value of the parameter can contain variables (1.3.10, 1.2.7). | 61 Parameter value can contain variables (1.3.10, 1.2.7). |
| 62 The special value <literal>off</literal> allows to cancel the effect | 62 The special value <literal>off</literal> allows cancelling the effect |
| 63 of the <literal>auth_basic</literal> directive | 63 of the <literal>auth_basic</literal> directive |
| 64 inherited from the previous configuration level. | 64 inherited from the previous configuration level. |
| 65 </para> | 65 </para> |
| 66 | 66 |
| 67 </directive> | 67 </directive> |
| 111 hashing, should not be used) and <literal>SSHA</literal> (salted SHA-1 hashing, | 111 hashing, should not be used) and <literal>SSHA</literal> (salted SHA-1 hashing, |
| 112 used by some software packages, notably OpenLDAP and Dovecot). | 112 used by some software packages, notably OpenLDAP and Dovecot). |
| 113 <note> | 113 <note> |
| 114 Support for <literal>SHA</literal> scheme was added only to aid | 114 Support for <literal>SHA</literal> scheme was added only to aid |
| 115 in migration from other web servers. | 115 in migration from other web servers. |
| 116 It should not be used for new passwords since unsalted SHA-1 hashing | 116 It should not be used for new passwords, since unsalted SHA-1 hashing |
| 117 that it employs is vulnerable to | 117 that it employs is vulnerable to |
| 118 <link url="http://en.wikipedia.org/wiki/Rainbow_attack">rainbow table</link> | 118 <link url="http://en.wikipedia.org/wiki/Rainbow_attack">rainbow table</link> |
| 119 attacks. | 119 attacks. |
| 120 </note> | 120 </note> |
| 121 </listitem> | 121 </listitem> |