mirror of https://github.com/warmcat/libwebsockets.git synced 2025-03-16 00:00:07 +01:00

History

Andy Green f7149e90c2 cc0: align dedication to CC0 FAQ recommended format https://libwebsockets.org/pipermail/libwebsockets/2019-April/007937.html thanks to Bruce Perens for noting it. This doesn't change the intention or status of the CC0 files, they were pure CC0 before (ie, public domain) and they are pure CC0 now. It just gets rid of the (C) part at the top of the dedication which may be read to be a bit contradictory since the purpose is to make it public domain.		2019-05-02 09:29:01 +01:00
..
mount-origin	minimal examples: update for CSP best practices	2018-11-21 17:03:29 +08:00
mount-secret-origin	minimal examples: update for CSP best practices	2018-11-21 17:03:29 +08:00
ba-passwords	minimal-http-server-basicauth	2018-04-19 16:16:48 +08:00
CMakeLists.txt	refactor: most preparation for -DLWS_ROLE_H1=0	2018-04-27 19:16:50 +08:00
minimal-http-server-basicauth.c	cc0: align dedication to CC0 FAQ recommended format	2019-05-02 09:29:01 +01:00
README.md	auth: record basic auth user	2018-10-02 10:52:09 +08:00

README.md

lws minimal http server basic auth

This demonstrates how to protect a mount using a password file outside of the mount itself.

The demo has two mounts, a normal one at / and one protected by basic auth at /secret.

The file at ./ba-passwords contains valid user:password combinations.

Discovering the authenticated user

After a successful authentication, the WSI_TOKEN_HTTP_AUTHORIZATION token contains the authenticated username.

build

 $ cmake . && make

usage

 $ ./lws-minimal-http-server-basic-auth
[2018/04/19 08:40:05:1333] USER: LWS minimal http server basic auth | visit http://localhost:7681
[2018/04/19 08:40:05:1333] NOTICE: Creating Vhost 'default' port 7681, 1 protocols, IPv6 off

Visit http://localhost:7681, and follow the link there to the secret area.

Give your browser "user" and "password" as the credentials.