diff options
Diffstat (limited to 'docs/manual/mod/mod_auth_form.html.en')
| -rw-r--r-- | docs/manual/mod/mod_auth_form.html.en | 50 |
1 files changed, 27 insertions, 23 deletions
diff --git a/docs/manual/mod/mod_auth_form.html.en b/docs/manual/mod/mod_auth_form.html.en index 5ead4930..db7625c5 100644 --- a/docs/manual/mod/mod_auth_form.html.en +++ b/docs/manual/mod/mod_auth_form.html.en @@ -89,14 +89,14 @@ <li><img alt="" src="../images/down.gif" /> <a href="#authformsize">AuthFormSize</a></li> <li><img alt="" src="../images/down.gif" /> <a href="#authformusername">AuthFormUsername</a></li> </ul> -<h3>See also</h3> +<h3>Bugfix checklist</h3><ul class="seealso"><li><a href="https://www.apache.org/dist/httpd/CHANGES_2.4">httpd changelog</a></li><li><a href="https://bz.apache.org/bugzilla/buglist.cgi?bug_status=__open__&list_id=144532&product=Apache%20httpd-2&query_format=specific&order=changeddate%20DESC%2Cpriority%2Cbug_severity&component=mod_auth_form">Known issues</a></li><li><a href="https://bz.apache.org/bugzilla/enter_bug.cgi?product=Apache%20httpd-2&component=mod_auth_form">Report a bug</a></li></ul><h3>See also</h3> <ul class="seealso"> <li><code class="module"><a href="../mod/mod_session.html">mod_session</a></code></li> <li><code class="directive"><a href="../mod/mod_authn_core.html#authname">AuthName</a></code></li> <li><code class="directive"><a href="../mod/mod_authn_core.html#authtype">AuthType</a></code></li> <li><code class="directive"><a href="../mod/mod_authz_core.html#require">Require</a></code></li> <li><a href="../howto/auth.html">Authentication howto</a></li> -</ul><ul class="seealso"><li><a href="#comments_section">Comments</a></li></ul></div> +<li><a href="#comments_section">Comments</a></li></ul></div> <div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div> <div class="section"> <h2><a name="basicconfig" id="basicconfig">Basic Configuration</a></h2> @@ -109,14 +109,18 @@ a file using <code class="module"><a href="../mod/mod_authn_file.html">mod_authn_file</a></code>. If authentication is unsuccessful, the user will be redirected to the form login page.</p> - <div class="example"><h3>Basic example</h3><pre class="prettyprint lang-config">AuthFormProvider file -AuthUserFile "conf/passwd" -AuthType form -AuthName realm -AuthFormLoginRequiredLocation "http://example.com/login.html" -Session On -SessionCookieName session path=/ -SessionCryptoPassphrase secret</pre> + <div class="example"><h3>Basic example</h3><pre class="prettyprint lang-config"><Location "/admin"> + AuthFormProvider file + AuthUserFile "conf/passwd" + AuthType form + AuthName "/admin" + AuthFormLoginRequiredLocation "http://example.com/login.html" + + Session On + SessionCookieName session path=/ + + Require valid-user +</Location></pre> </div> <p>The directive <code class="directive"><a href="../mod/mod_authn_core.html#authtype">AuthType</a></code> will enable @@ -125,13 +129,17 @@ SessionCryptoPassphrase secret</pre> <code class="directive"><a href="../mod/mod_authn_file.html#authuserfile">AuthUserFile</a></code> specify that usernames and passwords should be checked against the chosen file.</p> - <p>The directives <code class="directive"><a href="../mod/mod_session.html#session">Session</a></code>, - <code class="directive"><a href="../mod/mod_session_cookie.html#sessioncookiename">SessionCookieName</a></code> and - <code class="directive"><a href="../mod/mod_session_crypto.html#sessioncryptopassphrase">SessionCryptoPassphrase</a></code> create an - encrypted session stored within an HTTP cookie on the browser. For more information + <p>The directives <code class="directive"><a href="../mod/mod_session.html#session">Session</a></code> and + <code class="directive"><a href="../mod/mod_session_cookie.html#sessioncookiename">SessionCookieName</a></code> + session stored within an HTTP cookie on the browser. For more information on the different options for configuring a session, read the documentation for <code class="module"><a href="../mod/mod_session.html">mod_session</a></code>.</p> + <p>You can optionally add a + <code class="directive"><a href="../mod/mod_session_crypto.html#sessioncryptopassphrase">SessionCryptoPassphrase</a></code> to + create an encrypted session cookie. This required the additional + module <code class="module"><a href="../mod/mod_session_crypto.html">mod_session_crypto</a></code> be loaded.</p> + <p>In the simple example above, a URL has been protected by <code class="module"><a href="../mod/mod_auth_form.html">mod_auth_form</a></code>, but the user has yet to be given an opportunity to enter their username and password. Options for doing so include providing a @@ -164,14 +172,13 @@ SessionCryptoPassphrase secret</pre> <div class="example"><h3>Form login handler example</h3><pre class="prettyprint lang-config"><Location "/dologin.html"> SetHandler form-login-handler AuthFormLoginRequiredLocation "http://example.com/login.html" - AuthFormLoginSuccessLocation "http://example.com/success.html" + AuthFormLoginSuccessLocation "http://example.com/admin/index.html" AuthFormProvider file AuthUserFile "conf/passwd" AuthType form - AuthName realm + AuthName /admin Session On SessionCookieName session path=/ - SessionCryptoPassphrase secret </Location></pre> </div> @@ -229,8 +236,7 @@ AuthType form AuthName realm AuthFormLoginRequiredLocation "http://example.com/login.html" Session On -SessionCookieName session path=/ -SessionCryptoPassphrase secret</pre> +SessionCookieName session path=/</pre> </div> <p>The error document page should contain a login form with an empty action property, @@ -316,8 +322,7 @@ SessionCryptoPassphrase secret</pre> AuthName realm AuthFormLogoutLocation "http://example.com/loggedout.html" Session On -SessionCookieName session path=/ -SessionCryptoPassphrase secret</pre> +SessionCookieName session path=/</pre> </div> <p>Note that logging a user out does not delete the session; it merely removes @@ -332,8 +337,7 @@ SessionCryptoPassphrase secret</pre> AuthFormLogoutLocation "http://example.com/loggedout.html" Session On SessionMaxAge 1 -SessionCookieName session path=/ -SessionCryptoPassphrase secret</pre> +SessionCookieName session path=/</pre> </div> </div><div class="top"><a href="#page-header"><img alt="top" src="../images/up.gif" /></a></div> |