secure webdav

Steveorevo · Steveorevo · commit d134f669f5ef · 2023-08-05T17:20:19.000-07:00
diff --git a/conf-web/nginx.conf b/conf-web/nginx.conf
@@ -5,7 +5,8 @@
 server {
     listen      %ip%:80;
     server_name webdav-%user%.%domain% ;
-
+    auth_basic "Restricted Access";
+    auth_basic_user_file /home/%user%/conf/web/webdav-%user%.%domain%/.htpasswd;
     include /home/%user%/conf/web/webdav-%user%.%domain%/nginx.forcessl.conf*;
 
     location / {
diff --git a/conf-web/nginx.ssl.conf b/conf-web/nginx.ssl.conf
@@ -5,6 +5,8 @@
 server {
     listen      %ip%:443 ssl http2;
     server_name webdav-%user%.%domain% ;
+    auth_basic "Restricted Access";
+    auth_basic_user_file /home/%user%/conf/web/webdav-%user%.%domain%/.htpasswd;
     ssl_certificate      /home/%user%/conf/web/webdav-%user%.%domain%/ssl/webdav-%user%.%domain%.pem;
     ssl_certificate_key  /home/%user%/conf/web/webdav-%user%.%domain%/ssl/webdav-%user%.%domain%.key;
     ssl_stapling on;
diff --git a/webdav.php b/webdav.php
@@ -152,7 +152,6 @@ public function setup( $user ) {
 
             // Create the password file.
             $pw_hash = trim( shell_exec( "sudo grep '^$user:' /etc/shadow" ) );
-            $pw_hash = $hcpp->delLeftMost( $pw_hash, "$user:" );
             file_put_contents( "/home/$user/conf/web/webdav-$user.$domain/.htpasswd", $pw_hash );
 
             // Create the nginx.conf file.
