Add instructions for plain htpasswd to Basic Setup

2025-06-29 16:55:32 +00:00 · 2017-05-29 02:04:36 +02:00 · 2017-05-29 02:04:36 +02:00 · b9bb46815d
commit b9bb46815d
parent 2e0e1947bd
1 changed files with 22 additions and 1 deletions
--- a/setup.md
+++ b/setup.md
@ -29,7 +29,9 @@ If the server is reachable over a network, you should change this.
 First a `users` file with all user names and passwords must be created.
 It can be stored in the same directory as the configuration file.

-The file can be created and managed with
+### The secure way
+
+The `users` file can be created and managed with
 [htpasswd](https://httpd.apache.org/docs/current/programs/htpasswd.html):
 ```shell
 # Create a new htpasswd file with the user "user1"
@ -57,6 +59,25 @@ htpasswd_filename = /path/to/users
 htpasswd_encryption = bcrypt
 ```

+### The simple but insecure way
+
+Create the `users` file by hand with lines containing the user name and
+password separated by `:`. Example:
+
+```
+user1:password1
+user2:password2
+```
+
+Authentication can be enabled with the following configuration:
+```ini
+[auth]
+type = htpasswd
+htpasswd_filename = /path/to/users
+# encryption method used in the htpasswd file
+htpasswd_encryption = plain
+```
+
 ## Addresses

 The default configuration binds the server to localhost. It can't be reached