Bypass .htaccess login when user has a specific cookie SetEnvIf
Question
This is how my .htaccess looks like:
AuthType Basic
AuthName "FORBIDDEN AREA"
AuthUserfile "../htdocs/site/.htpasswd"
AuthGroupFile /
Require valid-user
#Allow valid-user
Order Deny,Allow
Deny from all
SetEnvIf HTTP_COOKIE my_cookie_name norequire
Allow from env=norequire
Satisfy any
My user has a cookie, and if his cookie has a name "my_cookie_name" I would like that he bypasses the .htaccess login (authentication) so that he doesn't need to enter his username and password. I tried with SetEnvIF but it does't seem to work, or am I doing something wrong. If anyone has some suggestion I would be grateful to hear it?
Thanks
1 answers
solution1
1 ACCPTED 2014-07-01 14:23:43
You can use:
SetEnvIfNoCase Cookie PHPSESSID=.* PASS=1
AuthType Basic
AuthName "FORBIDDEN AREA"
AuthUserfile "../htdocs/site/.htpasswd"
AuthGroupFile /
Require valid-user
#Allow valid-user
Order Deny,Allow
Deny from all
Allow from env=PASS
Satisfy any
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
SetEnvIf Referer in htaccess
Protect single url using htaccess, but without SetEnvIf
When should I remove an user's login cookie?
Is it possible to dump the successful login cookie to the site and bypass the session?
User Login Session vs Cookie
Bypass .htaccess authorization for specific URI including query strings
PHP Facebook API using user credentials to bypass login prompt
How to pass an error message if a user tries to bypass the login process in PHP?
Bypass windows authentication when user is logged in IIS
How to restrict the view for particular user when they are login in using cookie name using php
Related Tags