Mercurial > hg > nginx-site
comparison xml/en/docs/http/ngx_http_auth_basic_module.xml @ 966:95c3c3bbf1ce
Text review.
author | Egor Nikitin <yegor.nikitin@gmail.com> |
---|---|
date | Wed, 14 Aug 2013 12:03:41 +0400 |
parents | 9dab69f2b71d |
children | 6316a7579448 |
comparison
equal
deleted
inserted
replaced
965:fadccc156188 | 966:95c3c3bbf1ce |
---|---|
14 | 14 |
15 <section id="summary"> | 15 <section id="summary"> |
16 | 16 |
17 <para> | 17 <para> |
18 The <literal>ngx_http_auth_basic_module</literal> module allows | 18 The <literal>ngx_http_auth_basic_module</literal> module allows |
19 to limit access to resources by validating the user name and password | 19 limiting access to resources by validating the user name and password |
20 using the “HTTP Basic Authentication” protocol. | 20 using the “HTTP Basic Authentication” protocol. |
21 </para> | 21 </para> |
22 | 22 |
23 <para> | 23 <para> |
24 Access can also be limited by | 24 Access can also be limited by |
56 | 56 |
57 <para> | 57 <para> |
58 Enables validation of user name and password using the | 58 Enables validation of user name and password using the |
59 “HTTP Basic Authentication” protocol. | 59 “HTTP Basic Authentication” protocol. |
60 The specified parameter is used as a <value>realm</value>. | 60 The specified parameter is used as a <value>realm</value>. |
61 Value of the parameter can contain variables (1.3.10, 1.2.7). | 61 Parameter value can contain variables (1.3.10, 1.2.7). |
62 The special value <literal>off</literal> allows to cancel the effect | 62 The special value <literal>off</literal> allows cancelling the effect |
63 of the <literal>auth_basic</literal> directive | 63 of the <literal>auth_basic</literal> directive |
64 inherited from the previous configuration level. | 64 inherited from the previous configuration level. |
65 </para> | 65 </para> |
66 | 66 |
67 </directive> | 67 </directive> |
111 hashing, should not be used) and <literal>SSHA</literal> (salted SHA-1 hashing, | 111 hashing, should not be used) and <literal>SSHA</literal> (salted SHA-1 hashing, |
112 used by some software packages, notably OpenLDAP and Dovecot). | 112 used by some software packages, notably OpenLDAP and Dovecot). |
113 <note> | 113 <note> |
114 Support for <literal>SHA</literal> scheme was added only to aid | 114 Support for <literal>SHA</literal> scheme was added only to aid |
115 in migration from other web servers. | 115 in migration from other web servers. |
116 It should not be used for new passwords since unsalted SHA-1 hashing | 116 It should not be used for new passwords, since unsalted SHA-1 hashing |
117 that it employs is vulnerable to | 117 that it employs is vulnerable to |
118 <link url="http://en.wikipedia.org/wiki/Rainbow_attack">rainbow table</link> | 118 <link url="http://en.wikipedia.org/wiki/Rainbow_attack">rainbow table</link> |
119 attacks. | 119 attacks. |
120 </note> | 120 </note> |
121 </listitem> | 121 </listitem> |