You are viewing a plain text version of this content. The canonical link for it is here.

Posted to docs@httpd.apache.org by André Malo <nd...@perlig.de> on 2002/12/08 01:26:20 UTC

[Review] httpd-2.1 auth docs cleanup

this patch tries to take full care of the aaa changes and cleanup the docs 
a bit (escpecially mod_auth_digest). Please review.

main changes:

- introduce docs for mod_authn_default, mod_authz_default and 
  mod_authz_user (not included in the patch, because it's a cvs diff; see 
  below for full online version)
- fix argument lists of the provider directives
- fix the examples (intended to be better :)
- introduce the AuthDigestShmemSize directive
- remove AuthDigestUser/GroupFile
- mention htdigest in AuthUserFile docs

As usual you'll find all the stuff online at 
<http://cvs.apache.org/~nd/manual/mod/> (both xml and html output).

(an impressive list of auth modules *g*)

TIA, nd
-- 
If God intended people to be naked, they would be born that way.
  -- Oscar Wilde

Re: [Review] httpd-2.1 auth docs cleanup

Posted by Astrid Kessler <ke...@kess-net.de>.

Uff, this is a lot of stuff. Nice work.
Only some small suggestions:

mod_auth_digest.xml:

> @@ -46,67 +52,37 @@
...
> +    >Netscape</a> since version 7. Since digest
>      authentication is not as widely implemented as basic
>      authentication, you should use it only in controlled
>      settings.</p> </note>
>  </section>

Since digest
authentication is not as widely implemented as basic
authentication, you should use it only in controlled
environments.


mod_authz_groupfile.xml:
> <example><title>Example:</title>
>   mygroup: bob joe anne
> </example>
> inefficient; <directive module="mod_authz_dbm"
> >AuthDBMGroupFile</directive> should be used instead.</p>

I would not say "should". Be less restrict, maybe
"AuthDBMGroupFile has a better performance" or something else.


Another point:
The user file should be explained in more detail, maybe within
the auth tutorial. I'm missing an explanation of the differences 
between user file for basic and digest authentication. 
mod_authn_file only describes a file for basic authentication.
The possible colon after the password should also be mentioned.

But this could be done later.

Kess

Re: [Review] httpd-2.1 auth docs cleanup

Posted by André Malo <nd...@perlig.de>.

* André Malo wrote:

> this patch tries to take full care of the aaa changes and cleanup the docs
> a bit (escpecially mod_auth_digest). Please review.

Modified the stuff a bit, mostly due to the recent changes of the auth 
modules.
I don't like to spam you again with such big patches, so the current one 
can be found here:

<http://cvs.apache.org/~nd/auth.patch> (about 60K)

> <http://cvs.apache.org/~nd/manual/mod/> (both xml and html output).

is also up to date.
I think, it's probably the best to commit it and shake out the nits then.
If there are no objections, I'm going to commit this evening (german 
time...)

nd
-- 
sub the($){+shift} sub answer (){ord q
        [* It is always 42! *]       }
           print the answer
# André Malo # http://www.perlig.de/ #