diff options
| author | Igor Pashev <pashev.igor@gmail.com> | 2016-12-05 22:19:16 +0300 |
|---|---|---|
| committer | Igor Pashev <pashev.igor@gmail.com> | 2016-12-05 22:19:16 +0300 |
| commit | 89e9332e2bacdba1cf44aabfcfc082c0de62871c (patch) | |
| tree | 156ad5e5b00e6966642b2d600dafa5f0cc1d43ac /docs/manual/mod/mod_auth_form.html.en | |
| parent | f51547f19e44fc1f511837443cb92ba28c189b9c (diff) | |
| parent | adb6f181257af28ee67af15fc49d2699a0080d4c (diff) | |
| download | apache2-89e9332e2bacdba1cf44aabfcfc082c0de62871c.tar.gz | |
Merge branch 'master' of git://anonscm.debian.org/pkg-apache/apache2
Diffstat (limited to 'docs/manual/mod/mod_auth_form.html.en')
| -rw-r--r-- | docs/manual/mod/mod_auth_form.html.en | 112 |
1 files changed, 59 insertions, 53 deletions
diff --git a/docs/manual/mod/mod_auth_form.html.en b/docs/manual/mod/mod_auth_form.html.en index ad697bd0..db7625c5 100644 --- a/docs/manual/mod/mod_auth_form.html.en +++ b/docs/manual/mod/mod_auth_form.html.en @@ -1,11 +1,13 @@ <?xml version="1.0" encoding="ISO-8859-1"?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> -<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en"><head><!-- +<html xmlns="http://www.w3.org/1999/xhtml" lang="en" xml:lang="en"><head> +<meta content="text/html; charset=ISO-8859-1" http-equiv="Content-Type" /> +<!-- XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX This file is generated from xml source: DO NOT EDIT XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX --> -<title>mod_auth_form - Apache HTTP Server</title> +<title>mod_auth_form - Apache HTTP Server Version 2.4</title> <link href="../style/css/manual.css" rel="stylesheet" media="all" type="text/css" title="Main stylesheet" /> <link href="../style/css/manual-loose-100pc.css" rel="alternate stylesheet" media="all" type="text/css" title="No Sidebar - Default font size" /> <link href="../style/css/manual-print.css" rel="stylesheet" media="print" type="text/css" /><link rel="stylesheet" type="text/css" href="../style/css/prettify.css" /> @@ -17,7 +19,7 @@ <div id="page-header"> <p class="menu"><a href="../mod/">Modules</a> | <a href="../mod/directives.html">Directives</a> | <a href="http://wiki.apache.org/httpd/FAQ">FAQ</a> | <a href="../glossary.html">Glossary</a> | <a href="../sitemap.html">Sitemap</a></p> <p class="apache">Apache HTTP Server Version 2.4</p> -<img alt="" src="../images/feather.gif" /></div> +<img alt="" src="../images/feather.png" /></div> <div class="up"><a href="./"><img title="<-" alt="<-" src="../images/left.gif" /></a></div> <div id="path"> <a href="http://www.apache.org/">Apache</a> > <a href="http://httpd.apache.org/">HTTP Server</a> > <a href="http://httpd.apache.org/docs/">Documentation</a> > <a href="../">Version 2.4</a> > <a href="./">Modules</a></div> @@ -61,7 +63,15 @@ </p> </div> -<div id="quickview"><h3 class="directives">Directives</h3> +<div id="quickview"><h3>Topics</h3> +<ul id="topics"> +<li><img alt="" src="../images/down.gif" /> <a href="#basicconfig">Basic Configuration</a></li> +<li><img alt="" src="../images/down.gif" /> <a href="#standalone">Standalone Login</a></li> +<li><img alt="" src="../images/down.gif" /> <a href="#inline">Inline Login</a></li> +<li><img alt="" src="../images/down.gif" /> <a href="#inlinepreservebody">Inline Login with Body Preservation</a></li> +<li><img alt="" src="../images/down.gif" /> <a href="#loggingout">Logging Out</a></li> +<li><img alt="" src="../images/down.gif" /> <a href="#urlencoding">Usernames and Passwords</a></li> +</ul><h3 class="directives">Directives</h3> <ul id="toc"> <li><img alt="" src="../images/down.gif" /> <a href="#authformauthoritative">AuthFormAuthoritative</a></li> <li><img alt="" src="../images/down.gif" /> <a href="#authformbody">AuthFormBody</a></li> @@ -79,22 +89,14 @@ <li><img alt="" src="../images/down.gif" /> <a href="#authformsize">AuthFormSize</a></li> <li><img alt="" src="../images/down.gif" /> <a href="#authformusername">AuthFormUsername</a></li> </ul> -<h3>Topics</h3> -<ul id="topics"> -<li><img alt="" src="../images/down.gif" /> <a href="#basicconfig">Basic Configuration</a></li> -<li><img alt="" src="../images/down.gif" /> <a href="#standalone">Standalone Login</a></li> -<li><img alt="" src="../images/down.gif" /> <a href="#inline">Inline Login</a></li> -<li><img alt="" src="../images/down.gif" /> <a href="#inlinepreservebody">Inline Login with Body Preservation</a></li> -<li><img alt="" src="../images/down.gif" /> <a href="#loggingout">Logging Out</a></li> -<li><img alt="" src="../images/down.gif" /> <a href="#urlencoding">Usernames and Passwords</a></li> -</ul><h3>See also</h3> +<h3>Bugfix checklist</h3><ul class="seealso"><li><a href="https://www.apache.org/dist/httpd/CHANGES_2.4">httpd changelog</a></li><li><a href="https://bz.apache.org/bugzilla/buglist.cgi?bug_status=__open__&list_id=144532&product=Apache%20httpd-2&query_format=specific&order=changeddate%20DESC%2Cpriority%2Cbug_severity&component=mod_auth_form">Known issues</a></li><li><a href="https://bz.apache.org/bugzilla/enter_bug.cgi?product=Apache%20httpd-2&component=mod_auth_form">Report a bug</a></li></ul><h3>See also</h3> <ul class="seealso"> <li><code class="module"><a href="../mod/mod_session.html">mod_session</a></code></li> <li><code class="directive"><a href="../mod/mod_authn_core.html#authname">AuthName</a></code></li> <li><code class="directive"><a href="../mod/mod_authn_core.html#authtype">AuthType</a></code></li> <li><code class="directive"><a href="../mod/mod_authz_core.html#require">Require</a></code></li> <li><a href="../howto/auth.html">Authentication howto</a></li> -</ul><ul class="seealso"><li><a href="#comments_section">Comments</a></li></ul></div> +<li><a href="#comments_section">Comments</a></li></ul></div> <div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div> <div class="section"> <h2><a name="basicconfig" id="basicconfig">Basic Configuration</a></h2> @@ -107,14 +109,18 @@ a file using <code class="module"><a href="../mod/mod_authn_file.html">mod_authn_file</a></code>. If authentication is unsuccessful, the user will be redirected to the form login page.</p> - <div class="example"><h3>Basic example</h3><pre class="prettyprint lang-config">AuthFormProvider file -AuthUserFile conf/passwd -AuthType form -AuthName realm -AuthFormLoginRequiredLocation http://example.com/login.html -Session On -SessionCookieName session path=/ -SessionCryptoPassphrase secret</pre> + <div class="example"><h3>Basic example</h3><pre class="prettyprint lang-config"><Location "/admin"> + AuthFormProvider file + AuthUserFile "conf/passwd" + AuthType form + AuthName "/admin" + AuthFormLoginRequiredLocation "http://example.com/login.html" + + Session On + SessionCookieName session path=/ + + Require valid-user +</Location></pre> </div> <p>The directive <code class="directive"><a href="../mod/mod_authn_core.html#authtype">AuthType</a></code> will enable @@ -123,13 +129,17 @@ SessionCryptoPassphrase secret</pre> <code class="directive"><a href="../mod/mod_authn_file.html#authuserfile">AuthUserFile</a></code> specify that usernames and passwords should be checked against the chosen file.</p> - <p>The directives <code class="directive"><a href="../mod/mod_session.html#session">Session</a></code>, - <code class="directive"><a href="../mod/mod_session_cookie.html#sessioncookiename">SessionCookieName</a></code> and - <code class="directive"><a href="../mod/mod_session_crypto.html#sessioncryptopassphrase">SessionCryptoPassphrase</a></code> create an - encrypted session stored within an HTTP cookie on the browser. For more information + <p>The directives <code class="directive"><a href="../mod/mod_session.html#session">Session</a></code> and + <code class="directive"><a href="../mod/mod_session_cookie.html#sessioncookiename">SessionCookieName</a></code> + session stored within an HTTP cookie on the browser. For more information on the different options for configuring a session, read the documentation for <code class="module"><a href="../mod/mod_session.html">mod_session</a></code>.</p> + <p>You can optionally add a + <code class="directive"><a href="../mod/mod_session_crypto.html#sessioncryptopassphrase">SessionCryptoPassphrase</a></code> to + create an encrypted session cookie. This required the additional + module <code class="module"><a href="../mod/mod_session_crypto.html">mod_session_crypto</a></code> be loaded.</p> + <p>In the simple example above, a URL has been protected by <code class="module"><a href="../mod/mod_auth_form.html">mod_auth_form</a></code>, but the user has yet to be given an opportunity to enter their username and password. Options for doing so include providing a @@ -159,17 +169,16 @@ SessionCryptoPassphrase secret</pre> The action of the form should point at this handler, which is configured within Apache httpd as follows:</p> - <div class="example"><h3>Form login handler example</h3><pre class="prettyprint lang-config"><Location /dologin.html> + <div class="example"><h3>Form login handler example</h3><pre class="prettyprint lang-config"><Location "/dologin.html"> SetHandler form-login-handler - AuthFormLoginRequiredLocation http://example.com/login.html - AuthFormLoginSuccessLocation http://example.com/success.html + AuthFormLoginRequiredLocation "http://example.com/login.html" + AuthFormLoginSuccessLocation "http://example.com/admin/index.html" AuthFormProvider file - AuthUserFile conf/passwd + AuthUserFile "conf/passwd" AuthType form - AuthName realm + AuthName /admin Session On SessionCookieName session path=/ - SessionCryptoPassphrase secret </Location></pre> </div> @@ -221,14 +230,13 @@ SessionCryptoPassphrase secret</pre> containing the login form, as follows:</p> <div class="example"><h3>Basic inline example</h3><pre class="prettyprint lang-config">AuthFormProvider file -ErrorDocument 401 /login.shtml -AuthUserFile conf/passwd +ErrorDocument 401 "/login.shtml" +AuthUserFile "conf/passwd" AuthType form AuthName realm -AuthFormLoginRequiredLocation http://example.com/login.html +AuthFormLoginRequiredLocation "http://example.com/login.html" Session On -SessionCookieName session path=/ -SessionCryptoPassphrase secret</pre> +SessionCookieName session path=/</pre> </div> <p>The error document page should contain a login form with an empty action property, @@ -291,7 +299,7 @@ SessionCryptoPassphrase secret</pre> technology.</p> <div class="example"><h3>CGI example</h3><pre class="prettyprint lang-config"> AuthFormProvider file - ErrorDocument 401 /cgi-bin/login.cgi + ErrorDocument 401 "/cgi-bin/login.cgi" ...</pre> </div> @@ -312,10 +320,9 @@ SessionCryptoPassphrase secret</pre> <div class="example"><h3>Basic logout example</h3><pre class="prettyprint lang-config">SetHandler form-logout-handler AuthName realm -AuthFormLogoutLocation http://example.com/loggedout.html +AuthFormLogoutLocation "http://example.com/loggedout.html" Session On -SessionCookieName session path=/ -SessionCryptoPassphrase secret</pre> +SessionCookieName session path=/</pre> </div> <p>Note that logging a user out does not delete the session; it merely removes @@ -327,11 +334,10 @@ SessionCryptoPassphrase secret</pre> </p> <div class="example"><h3>Basic session expiry example</h3><pre class="prettyprint lang-config">SetHandler form-logout-handler -AuthFormLogoutLocation http://example.com/loggedout.html +AuthFormLogoutLocation "http://example.com/loggedout.html" Session On SessionMaxAge 1 -SessionCookieName session path=/ -SessionCryptoPassphrase secret</pre> +SessionCookieName session path=/</pre> </div> </div><div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div> @@ -456,7 +462,7 @@ lower level modules</td></tr> <tr><th><a href="directive-dict.html#Status">Status:</a></th><td>Base</td></tr> <tr><th><a href="directive-dict.html#Module">Module:</a></th><td>mod_auth_form</td></tr> <tr><th><a href="directive-dict.html#Compatibility">Compatibility:</a></th><td>Available in Apache HTTP Server 2.3.0 and later. The use of the expression -parser hass been added in 2.4.4.</td></tr> +parser has been added in 2.4.4.</td></tr> </table> <p>The <code class="directive"><a href="#authformloginrequiredlocation">AuthFormLoginRequiredLocation</a></code> directive specifies the URL to redirect to should the user not be authorised to view a page. The value @@ -480,7 +486,7 @@ parser hass been added in 2.4.4.</td></tr> <tr><th><a href="directive-dict.html#Status">Status:</a></th><td>Base</td></tr> <tr><th><a href="directive-dict.html#Module">Module:</a></th><td>mod_auth_form</td></tr> <tr><th><a href="directive-dict.html#Compatibility">Compatibility:</a></th><td>Available in Apache HTTP Server 2.3.0 and later. The use of the expression -parser hass been added in 2.4.4.</td></tr> +parser has been added in 2.4.4.</td></tr> </table> <p>The <code class="directive"><a href="#authformloginsuccesslocation">AuthFormLoginSuccessLocation</a></code> directive specifies the URL to redirect to should the user have logged in successfully. The value is @@ -503,7 +509,7 @@ parser hass been added in 2.4.4.</td></tr> <tr><th><a href="directive-dict.html#Status">Status:</a></th><td>Base</td></tr> <tr><th><a href="directive-dict.html#Module">Module:</a></th><td>mod_auth_form</td></tr> <tr><th><a href="directive-dict.html#Compatibility">Compatibility:</a></th><td>Available in Apache HTTP Server 2.3.0 and later. The use of the expression -parser hass been added in 2.4.4.</td></tr> +parser has been added in 2.4.4.</td></tr> </table> <p>The <code class="directive"><a href="#authformlogoutlocation">AuthFormLogoutLocation</a></code> directive specifies the URL of a page on the server to redirect to should the user attempt to log @@ -513,9 +519,9 @@ parser hass been added in 2.4.4.</td></tr> <p>When a URI is accessed that is served by the handler <code>form-logout-handler</code>, the page specified by this directive will be shown to the end user. For example:</p> - <div class="example"><h3>Example</h3><pre class="prettyprint lang-config"><Location /logout> + <div class="example"><h3>Example</h3><pre class="prettyprint lang-config"><Location "/logout"> SetHandler form-logout-handler - AuthFormLogoutLocation http://example.com/loggedout.html + AuthFormLogoutLocation "http://example.com/loggedout.html" Session on #... </Location></pre> @@ -564,7 +570,7 @@ parser hass been added in 2.4.4.</td></tr> </table> <p>The <code class="directive"><a href="#authformmethod">AuthFormMethod</a></code> directive specifies the name of an HTML field which, if present, will contain the - mimetype of the request to to submit should login be successful.</p> + mimetype of the request to submit should login be successful.</p> <p>By populating the form with fields described by <code class="directive"><a href="#authformmethod">AuthFormMethod</a></code>, @@ -608,12 +614,12 @@ parser hass been added in 2.4.4.</td></tr> by the <code class="module"><a href="../mod/mod_authn_file.html">mod_authn_file</a></code> module. Make sure that the chosen provider module is present in the server.</p> - <div class="example"><h3>Example</h3><pre class="prettyprint lang-config"><Location /secure> + <div class="example"><h3>Example</h3><pre class="prettyprint lang-config"><Location "/secure"> AuthType form AuthName "private area" AuthFormProvider dbm AuthDBMType SDBM - AuthDBMUserFile /www/etc/dbmpasswd + AuthDBMUserFile "/www/etc/dbmpasswd" Require valid-user #... </Location></pre> @@ -720,7 +726,7 @@ var comments_identifier = 'http://httpd.apache.org/docs/2.4/mod/mod_auth_form.ht } })(window, document); //--><!]]></script></div><div id="footer"> -<p class="apache">Copyright 2014 The Apache Software Foundation.<br />Licensed under the <a href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a>.</p> +<p class="apache">Copyright 2016 The Apache Software Foundation.<br />Licensed under the <a href="http://www.apache.org/licenses/LICENSE-2.0">Apache License, Version 2.0</a>.</p> <p class="menu"><a href="../mod/">Modules</a> | <a href="../mod/directives.html">Directives</a> | <a href="http://wiki.apache.org/httpd/FAQ">FAQ</a> | <a href="../glossary.html">Glossary</a> | <a href="../sitemap.html">Sitemap</a></p></div><script type="text/javascript"><!--//--><![CDATA[//><!-- if (typeof(prettyPrint) !== 'undefined') { prettyPrint(); |