Zarathustra Shall Speak » lighttpd http://zarathustrashallspeak.com And you yourself are also this Will to Power. Tue, 17 Jan 2012 20:44:36 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 lighttpd/htaccess Protection http://zarathustrashallspeak.com/2009/06/06/lighttpdhtaccess-protection/ http://zarathustrashallspeak.com/2009/06/06/lighttpdhtaccess-protection/#comments Sat, 06 Jun 2009 01:34:36 +0000 Akairenn http://zarathustrashallspeak.com/?p=59 First, make sure mod_auth is enabled in lighttpd.conf, in the big giant list o’ modules near the top of the config.

Then:

auth.backend = "plain"
auth.backend.plain.userfile = "/path/to/your/htpasswd_file"
auth.require = ( "/" =>
	(
		"method" => "basic",
		"realm" => "Password protected area",
		"require" => "valid-user"
	)
)

The htpasswd_file should be located outside of a docroot (you don’t really want people downloading it, now, do you?) and is, for all intents and purposes, a conventional htpasswd file. That is, you can use the htpasswd utility to generate it, or if you’re lazy, one of the many web-based utilities out there. (Google for .htpasswd generator)

The auth.require line – or rather, the first part, is what’s being protected. / should cover the whole docroot; if you wanted to protect a subdirectory, you’d just use “/mysubdirectory/” for example.

]]> http://zarathustrashallspeak.com/2009/06/06/lighttpdhtaccess-protection/feed/ 0