mod_auth_digestmod_auth_digest overviewmod_auth_digest module allows to use HTTP Digest Authentication. To implement MD5 Digest Authentication one should use AuthType Digest and AuthDigestProvider directives. And then in AuthDigestDomain directive specify at least the root URI(s) for this protection space. Example:
Note!
mod_auth_digest directivesAuthDigestAlgorithm
AuthDigestAlgorithm directive specifies the algorithm used to calculate the challenge and response hashes. Currently, only MD5 algorithm is applicable. AuthDigestDomain
AuthDigestDomain directive is used to specify one or more URIs that are in the same protection space (use the same realm and username/password info). The specified URIs are prefixes; the client will assume that all URIs "below" these are also protected by the same username/password. The URIs may be either absolute or relative ones. This directive is mandatory and must contain at least the root URI(s) for this space. Specified URIs may also point to different servers, in such case clients will share username/password info across multiple servers without prompting the user each time. AuthDigestNcCheck
AuthDigestNcCheck directive is not yet implemented. AuthDigestNonceFormat
AuthDigestNonceFormat directive is not yet implemented.
AuthDigestNonceLifetime
AuthDigestNonceLifetime directive checks the time during which the server nonce is valid. When the client contacts the server using an expired nonce the server sends back a 401 response with stale=true. If seconds is greater than 0 then it specifies the amount of time for which the nonce is valid. If seconds is set to a negative value, the nonce will never expire.
AuthDigestProvider
AuthDigestProvider directive specifies provider used for user authentication. Default file provider is implemented by the mod_authn_file module.
AuthDigestQop
AuthDigestQop directive allows to specify quality of protection:
Currently, only auth value is available. AuthDigestShmemSize
AuthDigestShmemSize directive defines the amount of shared memory, that will be allocated at server startup for keeping track of clients. Minimal shared memory segment cannot be set less than the space required for tracking at least one client. size (in bytes by default) depends on your system. If set to 0, The server will give an error message where exact value may be found. To specify size in kilobytes and megabytes, put K or M respectively after the size value.
|