Hi Gurus,
I would like to setup a directory on my site, where the users would have to login with a password as well as use https only.
This is what I have done so far:
httpd.conf
Code:
<Directory "/usr/local/apache2/htdocs/secure">
RewriteEngine on
RewriteCond %{SERVER_PORT} !^443$
RewriteRule ^(.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]
AuthType Basic
AuthName "Restricted"
AuthUserFile /usr/local/apache2/passwd/passwords
Require valid-user
</Directory>
This seems to do the job with one big problem: it asks for the password twice (one for the original http and then one for the https I guess).
What am I doing wrong here? Any help is much appreciated.
abapdr