🔑

htpasswd Generator

Generate Apache .htpasswd entries with bcrypt, SHA-1, MD5 (apr1), or crypt hashes. Free, runs 100% in your browser.

Reference

How does the htpasswd generator work?

Apache's .htpasswd file stores user-password pairs for HTTP Basic authentication. Each line has the form username:hash. bcrypt (prefix $2y$) is the modern, secure default and is generated using the Web Crypto API or a pure-JS bcrypt implementation. apr1 (prefix $apr1$) is Apache's MD5-based legacy format. SHA-1 (prefix {SHA}) and plain crypt are also supported but no longer recommended.

Common uses

  • Apache basic auth — protect a directory or admin area with a password.
  • Nginx auth_basic — same format, also supported by Nginx.
  • Static site staging — gate a preview deploy with a password.

Privacy

All hashing runs 100% in your browser. Passwords never leave your device.

← Back to all tools