From 401dc08db29b26ce7afc85b9d7ca7d83381304de Mon Sep 17 00:00:00 2001 From: Rich Bowen Date: Sat, 28 May 2016 14:43:09 +0000 Subject: [PATCH] auth_form example from trunk git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/branches/2.4.x@1745880 13f79535-47bb-0310-9956-ffa450edef68 --- docs/manual/mod/mod_auth_form.xml | 32 +++++++++++++++++++------------ 1 file changed, 20 insertions(+), 12 deletions(-) diff --git a/docs/manual/mod/mod_auth_form.xml b/docs/manual/mod/mod_auth_form.xml index 6330d6b339..fc439bf04f 100644 --- a/docs/manual/mod/mod_auth_form.xml +++ b/docs/manual/mod/mod_auth_form.xml @@ -75,14 +75,18 @@ Basic example -AuthFormProvider file -AuthUserFile "conf/passwd" -AuthType form -AuthName realm -AuthFormLoginRequiredLocation "http://example.com/login.html" -Session On -SessionCookieName session path=/ -SessionCryptoPassphrase secret +<Location "/admin"> + AuthFormProvider file + AuthUserFile "conf/passwd" + AuthType form + AuthName "/admin" + AuthFormLoginRequiredLocation "http://example.com/login.html" + + Session On + SessionCookieName session path=/ + + Require valid-user +</Location> @@ -92,13 +96,17 @@ SessionCryptoPassphrase secret AuthUserFile specify that usernames and passwords should be checked against the chosen file.

-

The directives Session, - SessionCookieName and - SessionCryptoPassphrase create an - encrypted session stored within an HTTP cookie on the browser. For more information +

The directives Session and + SessionCookieName + session stored within an HTTP cookie on the browser. For more information on the different options for configuring a session, read the documentation for mod_session.

+

You can optionally add a + SessionCryptoPassphrase to + create an encrypted session cookie. This required the additional + module mod_session_crypto be loaded.

+

In the simple example above, a URL has been protected by mod_auth_form, but the user has yet to be given an opportunity to enter their username and password. Options for doing so include providing a -- 2.40.0