diff options
author | Jan Pazdziora <jpazdziora@redhat.com> | 2013-11-19 16:33:43 +0800 |
---|---|---|
committer | Jan Pazdziora <jpazdziora@redhat.com> | 2013-11-19 16:44:27 +0800 |
commit | b4dbc063175bee59553682034d50782cb8f52a2d (patch) | |
tree | a2b11b5bc3736f7faaafaaab32039521a0a5b400 /README | |
parent | 08b6c0907f7b75700f5731cde8fef48d9f13b167 (diff) | |
download | mod_intercept_form_submit-b4dbc063175bee59553682034d50782cb8f52a2d.tar.gz mod_intercept_form_submit-b4dbc063175bee59553682034d50782cb8f52a2d.tar.xz mod_intercept_form_submit-b4dbc063175bee59553682034d50782cb8f52a2d.zip |
Support redacting the password with InterceptFormPasswordRedact option.
Diffstat (limited to 'README')
-rw-r--r-- | README | 22 |
1 files changed, 17 insertions, 5 deletions
@@ -42,13 +42,24 @@ specify three values: Name of the password field in the login form, and thus the password parameter in the POST request. -All three parameters need to be specified or the interception will not -be enabled. +All three parameters above need to be specified or the interception +will not be enabled. -Optionally, list of logins to ignore (never attempt to authenticate) -can be specified: +Optional parameters: - InterceptFormLoginSkip one_login or_more_logins + InterceptFormLoginSkip one_login [or_more_logins] + + List of logins to ignore (never attempt to authenticate). + + By default authentication will be attempted for all logins. + + InterceptFormPasswordRedact on|off + + When set to on and authentication is attempted (no matter + if it passes or fails), the value of the password will + be modified in the POST data to string [REDACTED]. + + Default is off. Example: @@ -57,6 +68,7 @@ Example: InterceptFormLogin login[login] InterceptFormPassword login[password] InterceptFormLoginSkip admin + InterceptFormPasswordRedact on </Location> The PAM service needs to be configured. For the above shown |