httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From rbo...@apache.org
Subject svn commit: r1745878 - /httpd/httpd/trunk/docs/manual/mod/mod_auth_form.xml
Date Sat, 28 May 2016 14:37:43 GMT
Author: rbowen
Date: Sat May 28 14:37:43 2016
New Revision: 1745878

URL: http://svn.apache.org/viewvc?rev=1745878&view=rev
Log:
Make this example actually, y'know, work.

Modified:
    httpd/httpd/trunk/docs/manual/mod/mod_auth_form.xml

Modified: httpd/httpd/trunk/docs/manual/mod/mod_auth_form.xml
URL: http://svn.apache.org/viewvc/httpd/httpd/trunk/docs/manual/mod/mod_auth_form.xml?rev=1745878&r1=1745877&r2=1745878&view=diff
==============================================================================
--- httpd/httpd/trunk/docs/manual/mod/mod_auth_form.xml (original)
+++ httpd/httpd/trunk/docs/manual/mod/mod_auth_form.xml Sat May 28 14:37:43 2016
@@ -81,9 +81,9 @@
     AuthType form
     AuthName "/admin"
     AuthFormLoginRequiredLocation "http://example.com/login.html"
+
     Session On
     SessionCookieName session path=/
-    SessionCryptoPassphrase secret
 
     Require valid-user
 </Location>
@@ -96,13 +96,17 @@
       <directive module="mod_authn_file">AuthUserFile</directive> specify that
usernames
       and passwords should be checked against the chosen file.</p>
 
-      <p>The directives <directive module="mod_session">Session</directive>,
-      <directive module="mod_session_cookie">SessionCookieName</directive> and
-      <directive module="mod_session_crypto">SessionCryptoPassphrase</directive>
create an
-      encrypted session stored within an HTTP cookie on the browser. For more information
+      <p>The directives <directive module="mod_session">Session</directive>
and
+      <directive module="mod_session_cookie">SessionCookieName</directive> 
+      session stored within an HTTP cookie on the browser. For more information
       on the different options for configuring a session, read the documentation for
       <module>mod_session</module>.</p>
 
+      <p>You can optionally add a 
+      <directive module="mod_session_crypto">SessionCryptoPassphrase</directive>
to 
+      create an encrypted session cookie. This required the additional
+      module <module>mod_session_crypto</module> be loaded.</p>
+
       <p>In the simple example above, a URL has been protected by
       <module>mod_auth_form</module>, but the user has yet to be given an opportunity
to
       enter their username and password. Options for doing so include providing a
@@ -144,10 +148,9 @@
     AuthFormProvider file
     AuthUserFile "conf/passwd"
     AuthType form
-    AuthName realm
+    AuthName /admin
     Session On
     SessionCookieName session path=/
-    SessionCryptoPassphrase secret
 &lt;/Location&gt;
         </highlight>
       </example>
@@ -212,7 +215,6 @@ AuthName realm
 AuthFormLoginRequiredLocation "http://example.com/login.html"
 Session On
 SessionCookieName session path=/
-SessionCryptoPassphrase secret
         </highlight>
       </example>
 
@@ -311,7 +313,6 @@ AuthName realm
 AuthFormLogoutLocation "http://example.com/loggedout.html"
 Session On
 SessionCookieName session path=/
-SessionCryptoPassphrase secret
         </highlight>
       </example>
 
@@ -330,7 +331,6 @@ AuthFormLogoutLocation "http://example.c
 Session On
 SessionMaxAge 1
 SessionCookieName session path=/
-SessionCryptoPassphrase secret
         </highlight>
       </example>
 



Mime
View raw message