带有html/jsp页面的Apache httpd基本身份验证绕过弹出窗口 [英] Apache httpd basic auth bypass popup with html/jsp page
问题描述
我想用普通的基于表单的登录页面替换Apache的httpd基本身份验证(基于弹出窗口).
I want to replace Apache's httpd basic authentication(pop up based) with a normal form-based login page.
有可能这样做吗?
推荐答案
我找到了答案!!!希望对您有所帮助.
I found the answer!!! Hope it may help some one.
Apache httpd服务器内部支持 mod_auth_form ,使用该功能,我们可以通过显示基于表单的登录页面来从用户获取凭据.
Apache httpd server internally supports mod_auth_form, using that we can get credentials from user by showing form-based login page.
如何使用mod_auth_form - https://httpd.apache.org/docs/2.4/mod/mod_auth_form.html
如何保留请求uri:
通过AJP协议连接.
基本流程-Httpd要求提供用户凭据&对用户进行身份验证.如果找到有效用户,则它将通过AJP端口与Tomcat共享远程用户详细信息.这会将传入的URI请求保留到httpd.
Basic flow - Httpd asks for user credentials & authenticates the user. If valid user found, then it will share remote user details with Tomcat via AJP port. This will preserve the incoming URI request to httpd.
这篇关于带有html/jsp页面的Apache httpd基本身份验证绕过弹出窗口的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!