
132
|
Chapter 6: Administering Apache
And if you had more than one permitted user, you would add them like this:
require jack will elizabeth
Apache must be told to re-read its configuration file for these changes to take effect:
# /etc/init.d/apache2 reload
Now try to access this secret file (http://www.example.com/secret/file.html) from one
of the accounts listed in the user file. You will get a dialog box that says something
like this:
Enter username and password for "test" at server1.centralsoft.org
Username:
Password:
Enter the username and password (you will see asterisks as you enter the password),
and click OK. You should see:
now you see it
Group files
Another way to handle multiple users is to use a group file. Create a /tmp/groups file
containing a group name, a colon, and one or more space-separated usernames:
pirates: jack will elizabeth
It’s also legal to list the group and users individually:
pirates: jack
pirates: will
pirates: elizabeth
Then add an AuthGroupFile directive to 000-default:
<Location /secret>
AuthName "test"
AuthType Basic
AuthUserFile /tmp/users
Order deny,allow
AuthGroupFile /tmp/groups
require group pirates
</Location>
Reload Apache as usual so your changes take effect:
# /etc/init.d/apache2 reload
Containers and Aliases
Apache applies authorization restrictions to containers, or files and directories on the
server. One such container is the
Location section discussed earlier. ...