htdigest file (Apache password storage)

1 - About

The .htdigest is a flat-file used to store:

for digest authentication of Apache HTTP Server.

The name of the file is given in the .htaccess configuration, and can be anything, but .htdigest is the canonical name.

2 - Management

2.1 - htdigest command

This file is often maintained with the shell command “htdigest” which can add, and update users, and will properly encode the password for use.

The “htdigest” command is found in the apache2-utils package on dpkg package management systems and the httpd-tools package on RPM package management systems.

The syntax of the htdigest command:[7]

htdigest [ -c ] passwdfile realm username

2.2 - Format

The format of the .htdigest file:

user1:Realm:5ea41921c65387d904834f8403185412
user2:Realm:734418f1e487083dc153890208b79379

3 - Documentation / Reference

security/htdigest.txt · Last modified: 2018/04/18 14:40 by gerardnico