1.8 httpd的用户认证

登录注册

1.8 httpd的用户认证

来源:
更新日期:2018-04-26

摘要：1.8 httpd的用户认证 vim /usr/local/apache2.4/conf/extra/httpd-vhosts.conf //把111.com那个虚拟主机添加如下内容：　　　　　DocumentRoot \"/data/wwwroot/111.com\" 　　　ServerName www.111.com 　　　

1.8 httpd的用户认证 vim /usr/local/apache2.4/conf/extra/httpd-vhosts.conf //把111.com那个虚拟主机添加如下内容：

<VirtualHost *:80>
DocumentRoot "/data/wwwroot/111.com"
ServerName www.111.com
<Directory /data/wwwroot/111.com> //指定认证的目录
AllowOverride AuthConfig //这个相当于打开认证的开关
AuthName "111.com user auth" //自定义认证的名字，作用不大
AuthType Basic //认证的类型，一般为Basic，其他类型我没用过
AuthUserFile /data/.htpasswd //指定密码文件所在位置
require valid-user //指定需要认证的用户为全部可用用户
</Directory>
</VirtualHost>

/usr/local/apache2.4/bin/htpasswd -c -m /data/.htpasswd aming //创建密码文件重新加载配置-t , graceful 绑定hosts，浏览器测试 curl -x127.0.0.1:80 www.111.com //状态码为401 curl -x127.0.0.1:80 -uaming:passwd www.111.com //状态码为200

[root@Dasoncheng ~]# vim /usr/local/apache2.4/conf/extra/httpd-vhosts.conf …… <VirtualHost *:80> # ServerAdmin webmaster@dummy-host.example.com DocumentRoot "/data/wwwroot/abc.com" ServerName abc.com ServerAlias www.abc.com 123.com ErrorLog "logs/abc.com-error_log" CustomLog "logs/abc.com-access_log" common </VirtualHost> <VirtualHost *:80> # ServerAdmin webmaster@dummy-host2.example.com DocumentRoot "/data/wwwroot/111.com" ServerName www.111.com ServerAlias 111.com <Directory /data/wwwroot/111.com> AllowOverride AuthConfig AuthName "111.com user auth" AuthType Basic AuthUserFile /data/.htpasswd require valid-user </Directory> ErrorLog "logs/111.com-error_log" CustomLog "logs/111.com-access_log" common </VirtualHost> [root@Dasoncheng ~]# /usr/local/apache2.4/bin/htpasswd -c -m /data/.htpasswd zhangsan New password: Re-type new password: Adding password for user zhangsan [root@Dasoncheng ~]# /usr/local/apache2.4/bin/apachectl -t Syntax OK [root@Dasoncheng ~]# /usr/local/apache2.4/bin/apachectl graceful 测试访问：

[root@Dasoncheng ~]# curl -x192.168.60.11:80 111.com <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>401 Unauthorized</title> </head><body> <h1>Unauthorized</h1> <p>This server could not verify that you are authorized to access the document requested. Either you supplied the wrong credentials (e.g., bad password), or your browser doesn\'t understand how to supply the credentials required.</p> </body></html> [root@Dasoncheng ~]# curl -x192.168.60.11:80 111.com -I HTTP/1.1 401 Unauthorized ##遇到的第一个提示符401，需要验证账号； Date: Fri, 23 Feb 2018 06:31:34 GMT Server: Apache/2.4.27 (Unix) PHP/5.6.30 WWW-Authenticate: Basic realm="111.com user auth" Content-Type: text/html; charset=iso-8859-1 [root@Dasoncheng ~]# curl -x192.168.60.11:80 111.com -uzhangsan:p@ssw0rd 111.com [root@Dasoncheng ~]#

1.8.2 针对单个页面进行验证：

<VirtualHost *:80>
DocumentRoot "/data/wwwroot/111.com"
ServerName www.111.com
<FilesMatch admin.php>
AllowOverride AuthConfig
AuthName "111.com user auth"
AuthType Basic
AuthUserFile /data/.htpasswd
require valid-user
</FilesMatch>
</VirtualHost>

[root@Dasoncheng ~]# vim /usr/local/apache2.4/conf/extra/httpd-vhosts.conf <VirtualHost *:80> # ServerAdmin webmaster@dummy-host2.example.com DocumentRoot "/data/wwwroot/111.com" ServerName www.111.com ServerAlias 111.com # <Directory /data/wwwroot/111.com> <FilesMatch admin.php> AllowOverride AuthConfig AuthName "Please pass the auth for this page" AuthType Basic AuthUserFile /data/.htpasswd require valid-user </FilesMatch> # </Directory> ErrorLog "logs/111.com-error_log" CustomLog "logs/111.com-access_log" common </VirtualHost> [root@Dasoncheng ~]# /usr/local/apache2.4/bin/apachectl -t Syntax OK [root@Dasoncheng ~]# /usr/local/apache2.4/bin/apachectl graceful [root@Dasoncheng ~]# vim /data/wwwroot/111.com/admin.php [root@Dasoncheng ~]# cat /data/wwwroot/111.com/admin.php <?php echo "Welcome to the page of adminn" ?> 测试访问admin页面：

[root@Dasoncheng ~]# cat /etc/hosts 127.0.0.1 localhost localhost.localdomain localhost4 localhost4.localdomain4 ::1 localhost localhost.localdomain localhost6 localhost6.localdomain6 192.168.60.11 www.abc.com www.111.com [root@Dasoncheng ~]# curl www.111.com 111.com [root@Dasoncheng ~]# curl www.111.com/admin.php <!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN"> <html><head> <title>401 Unauthorized</title> </head><body> <h1>Unauthorized</h1> <p>This server could not verify that you are authorized to access the document requested. Either you supplied the wrong credentials (e.g., bad password), or your browser doesn\'t understand how to supply the credentials required.</p> </body></html> [root@Dasoncheng ~]# curl www.111.com/admin.php -uzhangsan:p@ssw0rd Welcome to the page of admin