I am trying avoid double authentication. I want password protect my files. PHP is not a problem. However, there will be sensitive pdf files in the directory that I do not want someone to peek at. I have made the directory unbrowsable, but if someone new the hyperlink they could still see the pdf files. I believe at this point that the best approach I am going to use is to put the pdf files in a non web directory. I will then have php read the file and display it in the php file. -----Original Message----- From: Craig Dunigan [mailto:cdunigan@xxxxxxxxxxxxx] Sent: Friday, May 27, 2005 6:58 AM To: users@xxxxxxxxxxxxxxxx Subject: RE: [users@httpd] .htaccess help I'm a bit confused about what you want to do. I gather that you want to password protect a directory, but do you want Apache to issue an HTTP Basic authentication challenge (the little password box that your browser displays, separate from the web page), or to redirect to a PHP page that will do your custom login (therefore having nothing at all to do with .htaccess), or to require a double login, one HTTP Basic and one your custom login? On Thu, 26 May 2005, Noel Stratton wrote: > I do not believe that will help. I will have php files that can be > authenticated. However, there will be some pdf files in that directory. > Basically, I am attempting to protect the directory. Does anyone know > of a way to make .htaccess point to a php login page before allowing > anyone into the directory? > > -----Original Message----- > From: Aman Raheja [mailto:araheja@xxxxxxxxxxxxxx] > Sent: Thursday, May 26, 2005 4:03 PM > To: users@xxxxxxxxxxxxxxxx > Subject: Re: [users@httpd] .htaccess help > > PHP has this capability > http://us4.php.net/features.http-auth > > Aman Raheja > http://www.techquotes.com > > dan wrote: > > > Noel Stratton wrote: > > > >> Hello, > >> Is there a way to have .htaccess verify username and password from > >> a mysql database? If not is there a way to password protect a > >> directory with php. > >> The reason I ask is that I would like if a user changes their > >> password via php that when the users accesses the directory they > >> could use the password they changed to. > >> > >> Thank You, > >> > >> > >> Noel Stratton > >> Computer Specialist > >> Members 1st Credit Union > >> > > > > Noel - > > > > If you check out http://modules.apache.org and run a quick search > > for 'sql', you'll find several solutions that will suit your needs. > > > > However, most of these solutions are a bit dated, as people are > > moving towards a more "friendly" approach which include a complete > > PHP/ASP/whatever-based front-end that takes care of all of this, as > > integrated into part of a content management system or some such. > > > > Hope that helps > > -dant > > --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|