iExpert Ltd » Software Security http://www.iexpert.biz Tue, 25 May 2010 02:41:20 +0000 http://wordpress.org/?v=2.9.2 en hourly 1 How do I set up Apache to allow access to certain documents only if a site is either a local site or the user supplies a password and username? http://www.iexpert.biz/archives/284?utm_source=rss&utm_medium=rss&utm_campaign=how-do-i-set-up-apache-to-allow-access-to-certain-documents-only-if-a-site-is-either-a-local-site-or-the-user-supplies-a-password-and-username http://www.iexpert.biz/archives/284#comments Wed, 30 Dec 2009 22:49:02 +0000 admin http://www.iexpert.biz/?p=284

Use the Satisfy directive, in particular the Satisfy Any directive, to require that only one of the access restrictions be met. For example, adding the following configuration to a .htaccess or server configuration file would restrict access to people who either are accessing the site from a host under domain.com or who can supply a valid username and password:

Deny from all
Allow from .domain.com
AuthType Basic
AuthUserFile /usr/local/apache/conf/htpasswd.users
AuthName "special directory"
Require valid-user
Satisfy any
]]> http://www.iexpert.biz/archives/284/feed 0