manual/mod/mod_auth_db.html

	mod_auth_db.html revision 3d76f0e292da6a107829fbe83f98b8c0985c6ddb
<!--%hypertext -->
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML>
<HEAD>
<TITLE>Apache module mod_auth_db</TITLE>
</HEAD>

<BODY>
<IMG SRC="/images/apache_sub.gif" ALT="">
<!--/%hypertext -->
<H1>Module mod_auth_db</h1>

This module is contained in the <code>mod_auth_db.c</code> file, and
is not compiled in by default. It provides for user authentication using
Berkeley DB files. It is an alternative to <A HREF="/auth_dbm.html">DBM</A>
files for those systems which support DB and not DBM. It is only
available in Apache 1.1 and later.

<!--%hypertext -->
<menu>
<li><A HREF="#authdbgroupfile">AuthDBGroupFile</A>
<li><A HREF="#authdbuserfile">AuthDBUserFile</A>
</menu>
<hr>
<!--/%hypertext -->

<A name="authdbgroupfile"><h2>AuthDBGroupFile</h2></A>
<!--%plaintext &lt;?INDEX {\tt AuthDBGroupFile} directive&gt; -->
<strong>Syntax:</strong> AuthDBGroupFile <em>filename</em><br>
<Strong>Context:</strong> directory, .htaccess<br>
<Strong>Override:</strong> AuthConfig<br>
<strong>Status:</strong> Extension<br>
<strong>Module:</strong> mod_auth_db<p>

The AuthDBGroupFile directive sets the name of a DB file containing the list
of user groups for user authentication. <em>Filename</em> is the absolute path
to the group file.<p>

The group file is keyed on the username. The value for a user is a
comma-separated list of the groups to which the users belongs. There must
be no whitespace within the value, and it must never contain any colons.<p>

Security: make sure that the AuthDBGroupFile is stored outside the
document tree of the webserver; do <em>not</em> put it in the directory that
it protects. Otherwise, clients will be able to download the
AuthDBGroupFile.<p>

See also <A HREF="core.html#authname">AuthName</A>,
<A HREF="core.html#authtype">AuthType</A> and
<A HREF="#authdbuserfile">AuthDBUserFile</A>.<p><hr>

<A name="authdbuserfile"><h2>AuthDBUserFile</h2></A>
<!--%plaintext &lt;?INDEX {\tt AuthDBUserFile} directive&gt; -->
<strong>Syntax:</strong> AuthDBUserFile <em>filename</em><br>
<Strong>Context:</strong> directory, .htaccess<br>
<Strong>Override:</strong> AuthConfig<br>
<strong>Status:</strong> Extension<br>
<strong>Module:</strong> mod_auth_db<p>

The AuthDBUserFile directive sets the name of a DB file containing the list
of users and passwords for user authentication. <em>Filename</em> is the
absolute path to the user file.<p>
The user file is keyed on the username. The value for a user is the crypt()
encrypted password, optionally followed by a colon and arbitrary data.
The colon and the data following it will be ignored by the server.<p>

Security: make sure that the AuthDBUserFile is stored outside the
document tree of the webserver; do <em>not</em> put it in the directory that
it protects. Otherwise, clients will be able to download the
AuthDBUserFile.<p>

See also <A HREF="core.html#authname">AuthName</A>,
<A HREF="core.html#authtype">AuthType</A> and
<A HREF="#authdbgroupfile">AuthDBGroupFile</A>.<p>

<!--%hypertext -->
<hr>
<A HREF="../../"><IMG SRC="/images/apache_home.gif" ALT="Home"></A>
<A HREF="./"><IMG SRC="/images/apache_index.gif" ALT="Index"></A>

</BODY>
</HTML>
<!--/%hypertext -->