Return-Path: 
 <users-return-30926-apmail-httpd-users-archive=httpd.apache.org@httpd.apache.org>
Delivered-To: apmail-httpd-users-archive@httpd.apache.org
Received: (qmail 44009 invoked by uid 500); 8 Aug 2003 15:56:10 -0000
Mailing-List: contact users-help@httpd.apache.org; run by ezmlm
Precedence: bulk
Reply-To: users@httpd.apache.org
list-help: <mailto:users-help@httpd.apache.org>
list-unsubscribe: <mailto:users-unsubscribe@httpd.apache.org>
list-post: <mailto:users@httpd.apache.org>
Delivered-To: mailing list users@httpd.apache.org
Received: (qmail 43994 invoked from network); 8 Aug 2003 15:56:09 -0000
Received: from unknown (HELO mail.profundis.se) (213.80.46.101)
  by daedalus.apache.org with SMTP; 8 Aug 2003 15:56:09 -0000
X-ITHouse-Forward-Path: <users@httpd.apache.org>
Received: From PROFUNDIS01 by mail.profundis.se (IT House Mail Server [TRIAL -
 120 days left]); Fri, 8 Aug 2003 17:55:08 +0200
Message-ID: <184d01c35dc5$711ea4c0$652e50d5@profundis.se>
Reply-To: "Robert Andersson" <robert@profundis.nu>
From: "Robert Andersson" <robert@profundis.nu>
To: <users@httpd.apache.org>
References: 
 <5593DA408212D511B0910002A513501F06558EB9@phsexch20.mgh.harvard.edu>
Date: Fri, 8 Aug 2003 17:55:07 +0200
Organization: Profundis
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2800.1158
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165
X-Spam-Rating: daedalus.apache.org 1.6.2 0/1000/N
Subject: Re: [users@httpd] Setting Up User Authentication For An Entire Site

Kaplan, Andrew H wrote:
> The idea is when a user brings up the website on his/her browser,
> he/she will be immediately prompted for a password. Once that is provided,
> the user will have access to the various sections of the site that have
> been set up. I was planning on using the .htaccess file for the passwords,
and
> configuring the httpd.conf file so that password authentication will take
> place at the root of the Documents directory.

No need to use access files. Do the configuration directly in httpd.conf.

Create the password file somewhere outside the web space, using the htpasswd
utility:
http://httpd.apache.org/docs-2.0/programs/htpasswd.html

Modify the configuration for you document root:

<Dirctory /var/www/Documents>
    ...

    AuthType Basic
    AuthName "Restricted Area"
    AuthUserFile /path/to/passwordfile
    Require valid-user
</Directory>

That should be enough. Take a look a this guide for more information:
http://httpd.apache.org/docs-2.0/howto/auth.html

Regards,
Robert Andersson


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org