Hello there,
I need to setup htpasswd protection on a web directory served by Apache.
I also need to permit access to the index file in the specified directory, but block access to any other files or subdirectories.
So I'm using a configuration like this:
Code:
<Files index.php>
Order deny,allow
Allow from all
</Files>
<Directory "/home/username/www">
AuthType Basic
AuthName "Private Area"
AuthUserFile /home/username/.htpasswds
require user bill ben
</Directory>
Can anybody tell me why my override of the password protection for index.php files is being ignored?
Or alternatively tell me a better approach to password an entire web site except for the root level index file.
Any input appreciated.
Cheers
Ben