icingaweb2/doc/authentication.md

# Authentication via internal DB

The class DbUserBackend allows to handle the user authentication internally in a database.

## Configuration

The internal authentication is configured in *config/authentication.ini*. The value
of the configuration key "backend" will determine which UserBackend class to
load. To use the internal backend you need to specifiy the value "Db"
which will cause the class "DbUserBackend" to be loaded.

There are various configuration keys in "Authentication.ini" and some are only
used by specific backends. The internal DB uses the values
*dbtype*,*table*,*host*,*password*,*user* and *db*, which define the used
connection parameters, the database and the table.

## Database support

The module currently supports these databases:

 - mysql        (dbtype=mysql)
 - PostgreSQL   (dbtype=pgsql)


## Authentication

The backend will store the salted hash of the password in the column "password" and the salt in the column "salt".
When a password is checked, the hash is calculated with the function hash_hmac("sha256",salt,password) and compared
to the stored value.
Fix unit tests and add documentation Add functionality to check if a certain database type like psql or mysql is available and skip the tests accordingly. Add documentation for backend authentication. refs #3769 2013-07-25 10:05:47 +02:00			`# Authentication via internal DB`

Change default database to "icingaweb" and add installation instructions Set the default database and user to "icingaweb" in the authentication.ini. Add instructions about how to set up the databases to authentication.ini. refs #3769 2013-07-26 12:58:21 +02:00			`The class DbUserBackend allows to handle the user authentication internally in a database.`
Fix unit tests and add documentation Add functionality to check if a certain database type like psql or mysql is available and skip the tests accordingly. Add documentation for backend authentication. refs #3769 2013-07-25 10:05:47 +02:00
			`## Configuration`

			`The internal authentication is configured in config/authentication.ini. The value`
			`of the configuration key "backend" will determine which UserBackend class to`
Change default database to "icingaweb" and add installation instructions Set the default database and user to "icingaweb" in the authentication.ini. Add instructions about how to set up the databases to authentication.ini. refs #3769 2013-07-26 12:58:21 +02:00			`load. To use the internal backend you need to specifiy the value "Db"`
Fix unit tests and add documentation Add functionality to check if a certain database type like psql or mysql is available and skip the tests accordingly. Add documentation for backend authentication. refs #3769 2013-07-25 10:05:47 +02:00			`which will cause the class "DbUserBackend" to be loaded.`

			`There are various configuration keys in "Authentication.ini" and some are only`
			`used by specific backends. The internal DB uses the values`
			`dbtype,table,host,password,user and db, which define the used`
			`connection parameters, the database and the table.`

			`## Database support`

			`The module currently supports these databases:`

			`- mysql (dbtype=mysql)`
			`- PostgreSQL (dbtype=pgsql)`


			`## Authentication`

			`The backend will store the salted hash of the password in the column "password" and the salt in the column "salt".`
			`When a password is checked, the hash is calculated with the function hash_hmac("sha256",salt,password) and compared`
			`to the stored value.`