CentOS7下Apache2.4.6使用MySQL5.7验证
由于环境新升级到了CentOS 7,Apache 2.4.6已经不支持mod_auth_mysql进行验证,我们主要通过MySQL验证SVN账号密码。yum -y install httpd httpd-devel mod_dav_svn mod_ssl apr-util-mysql
1.使用dbd进行认证,无法与其他工具进行集成,比如Zabbix,禅道(将密码md5加密存储)
DBDriver mysql
DBDParams "host=192.168.0.75 port=3306 dbname=svn user=test password=test"
DBDMin 1
DBDKeep 2
DBDMax 10
DBDExptime 60
AuthType Basic
AuthName "SVN Auth"
AuthBasicProvider dbd
AuthDBDUserPWQuery "select password from account where is_enable =1 and user = %s"
数据库则为
> select * from user;
+----+-------+-------------------------------------------+-----------+
| id | user| password | is_enable|
+----+-------+-------------------------------------------+-----------+
|4 | test| {SHA}qUqP5cyxm6YcTAhz05Hph5gvu9M= | 1 |
+----+-------+-------------------------------------------+-----------+
以上只有test账号可以正常使用,其他明文密码和直接md5加密是无法使用的
密码的生成有以下几种加密方式,把以下的密码插入数据库
-- bcrypt
$ htpasswd -nbB myName myPassword
myName:$2y$05$c4WoMPo3SXsafkva.HHa6uXQZWr7oboPiC2bT/r7q1BB8I2s0BRqC
-- MD5
$ htpasswd -nbm myName myPassword
myName:$apr1$r31.....$HqJZimcKQFAMYayBlzkrA/
-- SHA1
$ htpasswd -nbs myName myPassword
myName:{SHA}VBPuJHI7uixaa6LQGWx4s+5GKNE=
-- CRYPT
$ htpasswd -nbd myName myPassword
myName:rqXexS6ZhobKA
2.手动安装mod_auth_mysql
下载软件包及补丁
wget https://nchc.dl.sourceforge.net/project/modauthmysql/modauthmysql/3.0.0/mod_auth_mysql-3.0.0.tar.gz
wget https://sourceforge.net/p/modauthmysql/patches/13/attachment/mod_auth_mysql_3.0.0_patch_apache2.4.diff 安装依赖包:
yum -y install mariadb-libs mariadb maraidb-devel patch 安装模块及配置:
# tar zxf mod_auth_mysql-3.0.0.tar.gz
# cd mod_auth_mysql-3.0.0
# patch -p0 < ../mod_auth_mysql_3.0.0_patch_apache2.4.diff
can't find file to patch at input line 3
Perhaps you used the wrong -p or --strip option?
The text leading up to this was:
--------------------------
|--- mod_auth_mysql-3.0.0/mod_auth_mysql.c 2005-06-22 12:17:45.000000000 -0400
|+++ mod_auth_mysql-3.0.0_patch_apache_2.4/mod_auth_mysql.c 2013-12-30 18:07:27.646704470 -0500
--------------------------
File to patch: mod_auth_mysql.c #此处输入mod_auth_mysql.c执行即可
patching file mod_auth_mysql.c
编译模块:
# apxs -c -L/usr/lib/mysql -I/usr/include/mysql -lmysqlclient -lm -lz mod_auth_mysql.c
安装模块:
# apxs -i mod_auth_mysql.la 最后在httpd.conf末尾增加配置文件
LoadModule mysql_auth_module modules/mod_auth_mysql.so
检查是否报错:
httpd -t
以上在正常情况下是这样的,但是5.7的就会报错,必须安装如下几个包:
mysql-community-libs-compat
mysql-community-libs
mysql-community-client
mysql-community-common
如果遇上错误,则可以在未安装5.7的机器上使用yum安装的mariadb-libs进行编译,然后上传到5.7的机器,测试后发现无任何问题。
页:
[1]