Skip to content

Commit

Permalink
explicitly tell users that the www-authenticate header must be set on…
Browse files Browse the repository at this point in the history 
… every response from the HTTP server

Signed-off-by: Lutz Freitag <lutz@gottliebtfreitag.de>
  • Loading branch information
@nerdmaennchen
nerdmaennchen committed Oct 22, 2019
1 parent 3b06887 commit c766602
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -136,6 +136,8 @@ BasicAuth

Authenticate users by an [HTTP Basic access authentication][BasicAuth_0] call.
HTTP server of your choice to authenticate. It should return HTTP 2xx for correct credentials and an appropriate other error code for wrong ones or refused access.
The HTTP server _must_ respond to any requests to the target URL with the "www-authenticate" header set.
Otherwise BasicAuth considers itself to be misconfigured or the HTTP server unfit for authentication.

### Configuration
The only supported parameter is the URL of the web server where the authentication happens.
Expand Down

0 comments on commit c766602

Please sign in to comment.