Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- ## debugging
- # 0 for off, 1 for 'auth-ok' messages, 2 for verbose debugging
- auth.debug = 0
- ## type of backend
- # plain, htpasswd, ldap or htdigest
- auth.backend = "plain"
- # filename of the password storage for plain
- auth.backend.plain.userfile = "/etc/lighttpd/auth/plain"
- ## for htpasswd
- #auth.backend.htpasswd.userfile = "/full/path/to/lighttpd-htpasswd.user"
- ## for htdigest
- #auth.backend.htdigest.userfile = "lighttpd-htdigest.user"
- ## for ldap
- # the $ in auth.backend.ldap.filter is replaced by the
- # 'username' from the login dialog
- #auth.backend.ldap.hostname = "localhost"
- #auth.backend.ldap.base-dn = "dc=my-domain,dc=com"
- #auth.backend.ldap.filter = "(uid=$)"
- # if enabled, startTLS needs a valid (base64-encoded) CA
- # certificate unless the certificate has been stored
- # in a c_hashed directory and referenced in ldap.conf
- #auth.backend.ldap.starttls = "enable"
- #auth.backend.ldap.ca-file = "/etc/CAcertificate.pem"
- # If you need to use a custom bind to access the server
- #auth.backend.ldap.bind-dn = "uid=admin,dc=my-domain,dc=com"
- #auth.backend.ldap.bind-pw = "mysecret"
- # If you want to allow empty passwords
- # "disable" for requiring passwords, "enable" for allowing empty passwords
- #auth.backend.ldap.allow-empty-pw = "disable"
- ## restrictions
- # set restrictions:
- #
- # ( <left-part-of-the-url> =>
- # ( "method" => "digest"/"basic",
- # "realm" => <realm>,
- # "require" => "user=<username>" )
- # )
- #
- # <realm> is a string to display in the dialog
- # presented to the user and is also used for the
- # digest-algorithm and has to match the realm in the
- # htdigest file (if used)
- #
- auth.require = ( "/latest/" =>
- (
- "method" => "basic",
- "realm" => "Restricted Area",
- "require" => "valid-user"
- ),
- "/streaming/" =>
- (
- "method" => "basic",
- "realm" => "Restricted Area",
- "require" => "valid-user"
- ),
- "/motdet/" =>
- (
- "method" => "basic",
- "realm" => "Restricted Area",
- "require" => "valid-user"
- )
- )
- # Or, using regular expressions:
- #$HTTP["url"] =~ "^/download|^/server-info" {
- # auth.require = ( "" =>
- # (
- # "method" => "digest",
- # "realm" => "download archiv",
- # "require" => "user=agent007|user=agent008"
- # )
- # )
- #}
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement