2skies.com :: basic http authentication with lighttpd http://2skies.com/docs/basic_http_authentication_with_lighttpd Hosting-Development-Support :: Experience the difference en-us Administrator hourly 1 http://backend.userland.com/rss

library

web development and webmaster best practice + lighttpd
Browse in : All > Documentation > knowledge base
All > Subject > Software > lighttpd
Any of these categories - All of these categories
basic http authentication with lighttpd


lighttpd.conf

Make sure you enable mod_access in your lighttpd.conf:

server.modules += ( "mod_access" )

htpasswd

#htpasswd -c ~/lighttpd/foo-auth.xt username

Running this command will prompt for this user's new password to store in the txt file. Combining this with a special $HTTP["host"] conditional ruleset in our lighttpd.conf will allow us to enable BASIC http authentication.

$HTTP["host"] =~ ".*domainroot.*" {
$HTTP["url"] =~ "^/somesubdir/" {
auth.backend = "htpasswd"
auth.backend.htpasswd.userfile = "/home/you/lighttpd/foo-auth.txt"
auth.require = ("/somesubdir" => (
"method"  => "basic",
"realm"   => "anything",
"require" => "valid-user"
))
}
}

Plain Text

If you don't have access to htpasswd or don't care if the password is not encrypted, you can simply create a plain text file with the following:

username:123

"Username" can be any user name you like and the "123" is the password.

The configuration is a little different for this form of authentication:

$HTTP["url"] =~ "^/somesubdir" {
auth.backend = "plain"
auth.backend.plain.userfile = "/home/you/lighttpd/foo-auth.txt"
auth.require = ("/somesubdir" => (
"method"  => "basic",
"realm"   => "whatever",
"require" => "valid-user"
))
}

Once this is in place, restart your lighttpd instance and users visiting the now protected url will be prompted with something like this:

httpauth

Updated: 05 Apr 10 07:33


< prev     next >