Basic Auth method not working
Hi I am a newbie on lighttpd,
when I created some like this, I got this issue,
Lighttpd version 1.4.48 on arm core linux 3.14.18.
auth.debug = 2
auth.backend = "htdigest"
auth.backend.htdigest.userfile = "/lighttpd/.htdigest"
auth.require = ( "/config/" =>
"method" => "basic",
"realm" => "ByPassword",
"require" => "valid-user"
with this set-up, it couldn't reach host/config/ site, it kept popping up login page.
Anything I configured wrong?
Updated by light_head about 1 year ago
Sorry for the method I brought this issue.
I put some debugging codes into the mod_auth.c, what I found was, when the basic method password less than 6 characters, like "password:test", there would be extra character(s) after the real password and failed the password checking. (password doesn't match error, the password string would be test(xx), added two more bytes).
I traced back and found out that there were some modifications in base64.c, related changed base64_stanard_reverse_bable from "short" to "char". I revered the baser64.c back to version 1.4.39, this error went away.
Updated by avij about 1 year ago
Is this related to ARM? On my x86_64 system basic auth works OK with all password lengths ranging from 1 to 20.
https://github.com/lighttpd/lighttpd1.4/commit/d4083effab0f9bf76528d5c47198b17e7471ed13 may be related. This fix is already in git head. Please test with that change.
Also available in: Atom