What is apache htaccess configuration to require authentication for all except for these URLs?
Question
What is the htaccess lines/config I would require to ensure that all parts of my site (files & URLs) are protected by authentication, EXCEPT for a given limited set of URLs. For example all except "/api/.*" if this makes sense.
The actually authentication could be like the below, but it's how I wrap this in the directives...
AuthName "Dialog prompt" AuthType
Basic AuthUserFile
/home/site/.htpasswd Require
valid-user
thanks
2 answers
solution1
1 2010-02-16 02:59:19
You could use SetEnvIf and <IfDefine> :
SetEnvIf Request_URI ^/api/ no_auth_req
# If no_auth_req is NOT defined then require authentication
<IfDefine !no_auth_req>
AuthName "Dialog prompt"
AuthType Basic
AuthUserFile /home/site/.htpasswd
Require valid-user
</IfDefine>
solution2
1 ACCPTED 2010-02-19 03:14:03
this seems to work:
AuthUserFile /home/.htpasswd
AuthName "Password Protected"
authtype Basic
Order Deny,Allow
Satisfy any
SetEnvIf request_uri "/api/" allow_all
Deny from all
Require valid-user
Allow from env=allow_all
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Apache .htaccess to redirect all URLs except for files and directories
Apache htaccess redirect to https all urls except certain one with various parameters
.htaccess redirecting all URLs except one
Apache RewriteRule for forbidding all URLs except one
apache rewrite all URLs to HTTPS except for one
Deny all configuration files except one in Apache
htaccess redirecting all urls except one to a different domain not working
htaccess redirect to http specific urls and all except on http
htaccess redirect all asset URLs except starting with specific strings
In htaccess, how to set a response header for all URLs of except one?
Related Tags