htpasswd

Programmaticly building htpasswd.

Is there a programmatic way to build htpasswd files, without depending on OS specific functions (i.e. exec(), passthru())? ...

Can I copy/paste htpasswd files to my new server?

I'm documenting the procedure for a full redeploy on my development server. Small staff, using Basic authentication (over SSL, of course) with an htpasswd file backend. Is it safe to transfer the .htpasswd file as-is? The Operating Systems will potentially differ, but the software on top (ie. Apache) will be the same. ...

How to use htpasswd file in Tomcat 6

I have already created a user database file using Apache's htpasswd command. This file is now used by several other application like apache and subversion. Users in are created like this: htpasswd /path/to/users.htpasswd peter This user file is global, not per directory. How I can make Tomcat 6 use this same file as a security real...

PHP and htpasswd

I have a structure like this: /home /home/dir1 /home/dir2 Now when someone goes to /home, he is asked for username and password (in a form) and I set session information in PHP for the remaining files of /home. Now /home/dir1 and /home/dir2 are protected by htpasswd but the same username and password. I dont want the user to re-enter ...

Cakephp Password Protection with htaccess and htpasswd - howto?

How can I password protect my website during development with htaccess in Cakephp? which htaccess file do I have to change? what do I have to write in the htaccess where do I put the .htpasswd? I searched google for that but couldn't find anything useful, I hope you could help me! Thanks Till that helped me solve the problem! For...

Is protecting a website directory with a .htaccess file secure?

I was wondering if protecting a web directory with an .htaccess file (with the .htpasswd file outside the public apache webroot) is a secure way to protect a directory (and its contents). Could someone explain the Do's and Don'ts of this kind of protection? ...

How to logout when using .htaccess (and .htpasswd) authentication?

Possible Duplicate: HTTP authentication logout via PHP Hi I have a some functionality on my website protected using .htaccess and .htpasswd. When users attempt to access this, they get prompt to enter details. They enter their details and get in and can see stuff etc. All works fine. My question is how do I create a logout f...

HTTP authentication using htaccess/htpasswd ...dialogue box comes up twice...

I have a site that has the main path under password protection. I also have a subfolder that have a separate (htaccess/htpasswd) password protection. For some reason, when I access the subfolder, I'm asked to put in my id/password twice. All of the files that are referenced are under the subfolder. What should I be doing to troublesh...

how can I find the pro Path for the .htpasswd file

any one can indicate please? or what php script can help get this file in the server. thanks a lot ...

nginx and auth_basic

I am trying to get basic authentication working with nginx in Ubuntu Jaunty. In nginx.conf, I added these two lines under the server context: server { ... auth_basic "Restricted Access"; auth_basic_user_file /etc/nginx/.htpasswd; ... } Then I apt-get'ed apache2-utils to get htpasswd, which I used to create the htpasswd fi...

How to ignore some directory in htpasswd ?

Hello ! I set some htaccess with htpasswd on my server. Here is it's content: Order Allow,Deny AuthType Basic AuthName "Password" AuthUserFile /var/www/.htpasswd Require valid-user Satisfy Any It works for all /var/www/* directories. Is it possible to ignore some of that /var/www/* directories ? ...

Domain specific htpasswd conditions

I am using a wildcard dns system that routes all subdomains through a single web app and sets a userid based on the first part of the URL (X.domain.com where X is the username). I now want to edit my htaccess file to enable conditional httpauth using htpasswd for specific domains. e.g. if url = password.domain.com the enable httpauth. ...

NGINX : Allow users to password protect directories themselves?

To my knowledge Nginx can only password protect directories from within the configuration file(s). That works nicely, but is not a real option for end-users who A) can not edit the configs and B) would break the configs if they could Right now I am thinking about a webbased representation of the directory structure where they can point ...

htaccess vs password protected directories

I have to add a password protected zone to a site I am working on (using the .htpasswd file). The thing is the whole directory structure it's being pointed at doesn't exist and is created through mod_rewrite. Will it still work, or does the directory actually have to physically exist on the server? Clarification: While I may need to p...

Can I unprotect a single script via .htaccess using CodeIgniter?

I'm in a development environment and we're using basic .htaccess/.htpasswd authentication to keep lurkers out. But some of my AJAX calls are coming back with HTTP/401 authentication failed errors. Is it possible for me to allow access only to those specific URL's? I can't easily do it by popping a new .htaccess in a subfolder because Cod...

how to generate a hash like apache's htpasswd using java

i use "Force MD5 encryption of the password" in htpasswd to generate a hash for instance '123' i get: use htpasswd: 123 => $apr1$kaTbKaLO$ewJXRZAKpjaxK4thy2jOp/ use MD5 digest: 123 => 202cb962ac59075b964b07152d234b70 please tell me how can i generate a hash like the apache htpasswd using java Thanks. ...

Htaccess... first force www than ask for login

I have an .htaccess file that mainly does 2 things. Force www on the domain and ask for login credentials (with .htpasswd). If I now visit domain.com it will ask for a username and password. When I fill them in I get redirected to www.domain.com and then it asks me to log in again. Is there any way to get the www redirection done befor...

htpasswd - Different output, same username and password

Hello. I was wondering why even for the same username and the same password, httpasswd outputs a new hash everytime? I tried finding an answer to this question, but couldn't. ...

.htaccess and .htpasswd to prevent access to folder problem

Hi, I have a website admin area I want to protect with a password.. so inside the admin folder I put an .htaccess and .htpasswd files containing this: .htaccess: AuthUserFile C:/wamp/www/website_project/admin/.htpasswd AuthName "Restricted Area" AuthType Basic Require valid-user .htpasswd: (generated using an online tool) admin:sOS...

.htaccess is interfering with nested .htaccess/.htpasswd?

I'm using Simple Mailing List (http://www.notonebit.com/projects/mailing-list). It's good mailing list, but no admin area. So you have to use .htaccess/.htpasswd to protect the /mail/admin folder. However, my site has WordPress installed in the website's root folder. WordPress creates .htaccess for custom permalinks. And for some reason...