GenieGate, Version 1.1.0 (PHP 5) manual

Prev   Next

Chapter 3. Installation

Basic Apache Usage

If you are only using PHP based accounts, this section can be skimmed over. You should disable any plugins that make use of it. (Comment out the PLUGINS section in your ~/geniegate/conf/geniegate.ini)

This section is a guide to using the Apache plugin. We assume you have a working knowledge of basic authentication and have used the htpasswd program that ships with Apache.

To use Apache password style authentication with GenieGate you need your configuration variable PLUGINS to contain GenieGate/Api/Plugin/Apache.php

Configuring [ApachePlugin]

AuthUserFile

Filename that contains Apache style users. (the same used by the htpasswd)

This file, and the directory it resides in must be writable by the server. If the server is running as user nobody, then you'll probably have to change the permissions on that directory to 777. Please note that just making the files themselves writable will not work, this plugin operates with backup copies to prevent data corruption and allow normal operations during the process.

[Important] Important

This file (and any files in it's directory) should NOT be web accessible as it contains password files.

AuthGroupFile

This is the filename of apache style groups.

Just as in the password file, the server needs write access to the directory.

Example 3.1. Configuring basic apache authentication


PLUGINS=GenieGate/Api/Plugin/Apache.php

[ApachePlugin]                                                                  
;; The password and group files for Apache regular authentication.              
                                                                                
AuthUserFile=/home/joe/geniegate/conf/apache/passwords.txt                      
AuthGroupFile=/home/joe/geniegate/conf/apache/groups.txt

That should be it, GenieGate will now be able to update these two files each time a user account is created or modified. It is still up to you to configure your server to use these files.

If you do not need additional functionality, (such as users being able to sign themselves up) this may be all that is needed.

[Tip] Tip

For Apache the relevant directives are AuthType , AuthName, AuthUserFile , AuthGroupFile , Require (for Require group) see your web servers documentation about how to create these files.

When using plugins such as this, you must run the "Expunge" function within your control panel periodically. Failure to do this will allow people with expired accounts to continue logging in.

Prev  Up  Next
Quick Start  Home  Chapter 4. Administrative functions