diff --git a/docs/articles/authn-authz.md b/docs/articles/authn-authz.md index f28b72f..8fbff84 100644 --- a/docs/articles/authn-authz.md +++ b/docs/articles/authn-authz.md @@ -4,9 +4,9 @@ > > - Authentication > -> - TLS, including mTLS -> - Username/password or token-based user authentication -> - LDAP +> - TLS, including mTLS +> - Username/password or token-based user authentication +> - LDAP > - htpasswd > > - Authorization @@ -152,6 +152,8 @@ configuration file, as shown in the following example. $ htpasswd -bBn >> /etc/zot/htpasswd + :pencil2: For strong security, make sure to use the -B option, specifying the bcrypt hashing algorithm. This is the only algorithm supported by zot for `htpasswd`. + 2. Enable `htpasswd` authentication and configure the path to the `htpasswd` authentication in the zot configuration file.