0
I’m new to this area and I’m a little confused about the user authentication process on a website served by apache. The scenario is, I have a website and this one must be accessed through user login. My question is whether the users in question are part of the Windows system or just apache? When it comes to logging into the server, do you mean the apache web server? In other words, the user account when created is recognized by Windows or is something only internal to apache?
Use apache just to be the http server, and implement your users' authentication in the application, apache has some authentication and authorization modules but little tweaked, more https://httpd.apache.org/docs/2.4/howto/auth.html
– rnd_rss
Thanks for the answer. But and user accounts are created on the operating system, in my case, on Windows? Or I can authenticate users using database accounts?
– Prosperino Acacio
You can use HTTP-level authentication, but the URL would look something like https:/user@domain/page, it doesn’t look pretty, it looks obsolete, we used it when an HTTP server was replacing an FTP server.
– epx
You authenticate using a list of users in the database, i.e., in the application layer.
– epx
You can authenticate them from the database, this would be internal in your application and you would have control over authenticating Windows users from a look at LDAP authentication
– rnd_rss
Got it. Thanks for the reply.
– Prosperino Acacio