Unverified Commit 7d3b47a0 authored by Victor Engmark's avatar Victor Engmark
Browse files

nginx: Create cryptographically secure htpasswd file 

Requires the `htpasswd` command available from `pkgs.apacheHttpd`.
parent fef047eb

nixos/modules/services/web-servers/nginx/location-options.nix

+1 −4
Original line number Diff line number Diff line
@@ -30,10 +30,7 @@ with lib; 
      default = null;

      description = ''

        Basic Auth password file for a vhost.

        Can be created via: {command}`htpasswd -c FILENAME USERNAME`.



        WARNING: The generate file contains the users' passwords in a

        non-cryptographically-securely hashed way.

        Can be created by running {command}`nix-shell --packages apacheHttpd --run 'htpasswd -B -c FILENAME USERNAME'`.

      '';

    };

nixos/modules/services/web-servers/nginx/vhost-options.nix

+1 −4
Original line number Diff line number Diff line
@@ -345,10 +345,7 @@ with lib; 
      default = null;

      description = ''

        Basic Auth password file for a vhost.

        Can be created via: {command}`htpasswd -c FILENAME USERNAME`.



        WARNING: The generate file contains the users' passwords in a

        non-cryptographically-securely hashed way.

        Can be created by running {command}`nix-shell --packages apacheHttpd --run 'htpasswd -B -c FILENAME USERNAME'`.

      '';

    };