httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Igor Galić <i.ga...@brainsware.org>
Subject Re: [users@httpd] mod_auth_form and digest authentication
Date Mon, 26 Dec 2011 12:28:36 GMT


----- Original Message -----
> Version of Apache 2.3.15
> 
> The documentation for mod_auth_form says that it works with digest or
> basic

Actually, mod_auth_form should work with any kind of authentication
system that you come up with, since it essentially gives up control
to you and your application

> authentication. I have it working with basic authentication from a
> database,
> but I can't find anything about how to switch over to digest. There
> are two
> reasons for wanting to do this, first if your users already have
> passwords
> encrypted in digest format, second the normal digest
> HTTP_AUTHORIZATION does
> not include the password in clear text and would not need
> mod_session_crypto
> if that value were used for the session.

Is there a specific reason why you do not want to, or cannot
use mod_session_crypto?


So long,

i 

-- 
Igor Galić

Tel: +43 (0) 664 886 22 883
Mail: i.galic@brainsware.org
URL: http://brainsware.org/
GPG: 6880 4155 74BD FD7C B515  2EA5 4B1D 9E08 A097 C9AE


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message