<Location /combined> AuthType Basic AuthName "Restricted Access" AuthBasicProvider file ldap AuthUserFile /usr/local/apache2/conf/htusers AuthLDAPURL ldap://example.com/o=Sample Require valid-user </Location> Apache 2.2 includes significant changes to how authentication and authorization are implemented in Apache. The changes mostly relate to work that was performed in existing modules to clearly separate methods (basic and digest authentication) and providers (file, LDAP, or SQL backends, for example). Before, both functions were mixed in each module's implementation. For example, mod_authn_file implements authentication against text files and mod_authn_dbm authenticates against database files. They can be combined with mod_auth_basic and mod_auth_digest, which in turn implement Basic and Digest HTTP authentication. Additional modules provide authorization functionality that authorizes users based on data stored in LDAP or SQL databases or files, as well as on file ownership or origin IP addresses. Providers can be mixed and matched, as shown in the example at the beginning of this section. A new module, mod_authn_alias, allows you to define complex authentication setups that can be referred by name elsewhere in the configuration file. This allows you for example to authenticate the same resource against two different LDAP servers. |