From e9e61781b6e4ca8ded2009c9ba462d893897d327 Mon Sep 17 00:00:00 2001
From: deuce <>
Date: Fri, 30 Nov 2007 09:05:08 +0000
Subject: [PATCH] Add documentation on digest authentication.

---
 docs/websrvr.txt | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/docs/websrvr.txt b/docs/websrvr.txt
index a880ddb2c9..768a66cb19 100644
--- a/docs/websrvr.txt
+++ b/docs/websrvr.txt
@@ -36,6 +36,12 @@ IndexFileNames=index.html,index.ssjs
     IndexFileNames=index.html,index.htm,index.ssjs
     Do not remove the index.ssjs unless you are not using the stock
     web pages at all.
+Authorization=Basic,Default
+    A comma-separated list of authentication mechanisms in order of preference.
+    The standards say that Basic must come first, but no browser currently
+    appears to use Digest if Basic is listed first.  Supported values are Basic
+    and Digest.  Digest is more secure as the users password is not sent in the
+    clear over the wire.
 CGIDirectory=cgi-bin
     A directory relative to RootDirectory where any files found will be
     considered CGI-executable. Be careful what files you put in this
@@ -151,6 +157,15 @@ AccessRequirements:
 Realm:
 	Sets the realm that is displayed to the user for the HTTP login.
 	Default is the BBS name.
+DigestRealm:
+	Sets the realm that is displayed to the user for the HTTP login when
+	Digest authentication is being used.  Default is the Realm value.
+Authorization:
+	A comma-separated list of authentication mechanisms in order of
+	preference.  The standards say that Basic must come first, but no
+	browser currently appears to use Digest if Basic is listed first.
+	Supported values are Basic and Digest.  Digest is more secure as the
+	users password is never sent over the wire.
 ErrorDirectory:
 	Specifies a different directory to check for error pages.  If the error
 	page is not found, will still check the global error directory.
-- 
GitLab