Generate secure encrypted entries for Apache and Nginx web servers. Protect your directories with standard HTTP Basic Authentication, processed safely in your browser.
We use the browser's native `crypto.subtle` API to hash your passwords securely. The resulting hash is then encoded in Base64 for compatibility with server configuration files.
The {SHA} format generated by this tool is widely supported by Apache and Nginx across different operating systems, ensuring broad compatibility for your server protection needs.
Since all processing is done locally on your machine, your plain-text passwords never leave your browser. This ensures maximum privacy for your sensitive server credentials.
An .htpasswd file is a flat-file database used directly by Apache and Nginx web servers to store usernames and passwords for Basic HTTP Authentication. When configured, the browser will force visitors to type in a correct username/password combination before it allows the website to load.
Web servers store passwords in a hashed format to prevent plain-text exposure if the configuration file is accessed. When you attempt to log in, the server hashes your input and compares it with the stored value. This tool helps you create those secure hashes.
Copy the generated string and paste it into a file named `.htpasswd`. Upload this file to your server and configure your server settings (like `.htaccess` or your Nginx config) to point to the file for directory protection.