Shulou(Shulou.com)06/01 Report--

This article mainly explains the "Apache server user authentication method", the article explains the content is simple and clear, easy to learn and understand, the following please follow the editor's ideas slowly in depth, together to study and learn "Apache server user authentication method" bar!

Using text file storage

The basic idea of this authentication method is that after Apache starts the authentication function, you can establish a file named .htaccess in the directory where you need to restrict access, and specify the authentication configuration command. When the user accesses the files in the directory for the first time, the browser displays a dialog box asking for a user name and password to confirm the user's identity. If it is a legitimate user, the content of the page visited is displayed, and after visiting each page of the directory, the browser automatically sends out the user name and password without having to enter it again until the browser is closed. The following are the specific steps for implementation:

Enter Linux as superuser root, assuming that Apache 1.3.12 has been compiled and installed into the / usr/local/apache directory. By default, the mod_auth module is automatically added when compiling Apache, and the authentication function of "user name + password" with text file as storage mode can be realized by using this module.

1. Modify the configuration file / usr/local/apache/conf/httpd.conf of Apache to set configuration commands for the directory where the authentication resources are located. The following example is the configuration of the / usr/local/apache/htdocs/members directory:

< Directory / usr/local/apache/htdocs / members >

Options Indexes FollowSymLinks

Allowoverride authconfig

Order allow,deny

Allow from all

< / Directory >

Where the allowoverride authconfig line indicates that user authentication is allowed for files in the / usr/local/apache/htdocs/ members directory.

two。 Create a file .htaccess under the restricted directory / usr/local/apache/htdocs/members/ http://www.bbqmw.net/qm_bbqmbd/ with the following contents:

AuthName "membership area"

AuthType basic

AuthUserFile/usr/local/apache/members.txt

Require valid-user

Description: the following configuration commands are commonly used in the file .htaccess:

1) AuthName command: specify the authentication zone name. The region name is displayed to the user in a dialog box prompted for authentication (see attached figure).

2) AuthType command: specify the authentication type. In HTTP1.0, there is only one type of authentication: basic. There are several types of authentication in HTTP1.1, such as MD5.

3) AuthUserFile command: specify a text file containing the user name and password, one pair per line.

4) AuthGroupFile command: specifies the text file that contains the list of user groups and the list of members of these groups. Members of a group are separated by spaces, such as:

Managers:user1 user2

5) require command: specify which users or groups can be authorized to access. Such as:

Require user user1 user2 (only users user1 and user2 can access it)

Requiresgroupsmanagers (only members of the group managers can access it)

Require valid-user (any user can access it in the file specified by AuthUserFile)

3. Using the program htpasswd that comes with Apache, generate a text file containing the username and password: / usr/local/apache/members.txt, with each line formatted as "username: password".

Thank you for your reading, the above is the content of "user authentication method of Apache server". After the study of this article, I believe you have a deeper understanding of the user authentication method of Apache server, and the specific use needs to be verified in practice. Here is, the editor will push for you more related knowledge points of the article, welcome to follow!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.