Sometimes we have to place content on our webserver we want to protect and only accessed by privileged users.<\/p>\n
A basic security can be established by a password restricted folder access, enforced by the Apache Webserver itself.<\/p>\n
This can be done by some simple instructions added to our .htaccess file:
\n(In case you haven’t already a .htaccess file, just create a new file calling it .htaccess and locating it in the folder you want to protect.)<\/p>\n
AuthType Basic These commands will tell the Apache webserver that the folder in question (and all below) are now protected and it needs a valid combination of username\/password to access it.<\/p>\n Having that done we now need to create the necessary .htpasswd file which we can do interactive on our server with the command:<\/p>\n htpasswd2 -c FILE USER<\/em><\/p>\n Assuming html is your webroot, a valid example, for protecting a folder called images below our webroot and using demouser\/demopassword as user credentials, would be:<\/p>\n .htaccess:<\/strong> AuthUserFile \/home\/username\/html\/.htpasswd .htpasswd<\/strong> demouser:$1$OHq3K5v3$pvFrGsHjWwYjpkZhc70T9. <\/em><\/p>\n","protected":false},"excerpt":{"rendered":" Sometimes we have to place content on our webserver we want to protect and only accessed by privileged users. A basic security can be established by a password restricted folder access, enforced by the Apache Webserver itself. This can be done by some simple instructions added to our .htaccess file: (In case you haven’t already […]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[51,14,31,15,50,16],"tags":[67,209,210,37,206,208,207,205,265],"class_list":["post-227","post","type-post","status-publish","format-standard","hentry","category-apache","category-operatingsystem","category-tipsntricks","category-unix","category-webserver","category-windows","tag-htaccess","tag-htpasswd","tag-htpasswd2","tag-password","tag-protect","tag-username","tag-webfolder","tag-webroot","tag-webserver"],"_links":{"self":[{"href":"https:\/\/www.askthegerman.com\/index.php?rest_route=\/wp\/v2\/posts\/227","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.askthegerman.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.askthegerman.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.askthegerman.com\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/www.askthegerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=227"}],"version-history":[{"count":8,"href":"https:\/\/www.askthegerman.com\/index.php?rest_route=\/wp\/v2\/posts\/227\/revisions"}],"predecessor-version":[{"id":358,"href":"https:\/\/www.askthegerman.com\/index.php?rest_route=\/wp\/v2\/posts\/227\/revisions\/358"}],"wp:attachment":[{"href":"https:\/\/www.askthegerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=227"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.askthegerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=227"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.askthegerman.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=227"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
\nAuthName “Protected Area”
\nAuthUserFile FILE
\nrequire valid-user<\/em><\/p>\n\n
\n
\n(Locate this file within the folder images and be aware to use an absolute path for AuthUserFile, <\/em>as for www.domain.com<\/em> would be wrong!)<\/p>\n
\nAuthType Basic
\nAuthName “Login for Secure Area”
\nrequire valid-user<\/em><\/p>\n
\n(Create a new file called .htpasswd and locate this file within the folder you’ve specified within AuthUserFile <\/em>path.<\/em>)<\/p>\n