Apache Tutorial: protections: .htaccess / .htpasswd files

http://httpd.apache.org/docs/2.0/howto/htaccess.html

http://www.garnetchaney.com/htaccess_tips_and_tricks.shtml

htpasswd -c .htpasswd userName

then

protect whole directory:

AuthUserFile    /directory/.htpasswd
AuthGroupFile   /dev/null
AuthName        -
AuthType        Basic

<Limit GET POST PUT>
require valid-user
</Limit>

protect file/s:

<FilesMatch "a.html">
AuthName "Member Only"
AuthType Basic
AuthUserFile /html/username/.htpasswd
require valid-user
</FilesMatch>

mettre dans un .htaccess:

php_flag register_globals off

(password and IP adress - those doesn't have to provide a password)

AuthUserFile /w3/.htpasswd
AuthGroupFile /dev/null
AuthName "Intranet"
AuthType Basic
Require valid-user
Order deny,allow
Deny from all
Allow from 127.0.0.1
Satisfy Any

Si on veut écrire un fichier .htaccess en UTF-8, il faut que ce soit du UTF-8 sans le “byte order mark” (BOM) envoyé dans l'entête du fichier. Ainsi un fichier encodé UTF-8, no BOM fonctionnera.

http://unicode.org/faq/utf_bom.html#BOM

  • info/htaccess_.htpasswd_files.txt
  • Dernière modification: 2018/07/18 09:45
  • par radeff