httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Knute Johnson <apa...@knutejohnson.com>
Subject Re: [users@httpd] How to allow specific IP to bypass .htaccess authentication ?
Date Fri, 10 Aug 2012 15:10:35 GMT
On 8/10/2012 5:11 AM, J. Bakshi wrote:
> Dear list,
>
> I have the following in my .htaccess to force the authentication
>
> [....]
> AuthName "htaccess password prompt"
> AuthUserFile /home/askapache.com/.htpasswd
> AuthType Basic
> Require valid-user
> [...]
>
> Now I like some IPs to bypass the authentication. Hence I have modified the rule as
>
> [...]
> Order deny,allow
> Deny from all
> AuthName "htaccess password prompt"
> AuthUserFile /home/askapache.com/.htpasswd
> AuthType Basic
> Require valid-user
> Allow from 172.17.10.1
> Satisfy Any
> [....]
>
> But it just allow all IPs to bypass the authentication. IS there any wrong code in the
rule set ?
> The apache version is -  [ Server version: Apache/2.2.16 (Debian) ]
>
> Thanks

I have a similar setup but I don't use the htaccess file.  To get mine 
to work without letting everybody in, I needed an Order Allow,Deny line 
just before the Allow from line.

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message