0

Two scenarios:

Directory

I want my entire server to be password-protected, so I included this directory config in my sites-enabled/000-default:

<Directory /> Options FollowSymLinks AllowOverride None AuthType Basic AuthName "Restricted Files" AuthUserFile /etc/apache2/passwords Require user someuser </Directory>

The question is how can I exclude a specific URL from this?

Proxy

I found that the above password protection doesn't apply to mod_proxy, so I added this to my proxy.conf:

<Proxy *> Order deny,allow Allow from all AuthType Basic AuthName "Restricted Files" AuthUserFile /etc/apache2/passwords Require user someuser </Proxy>

How do I exclude a specific proxied URL from the password protection? I tried adding a new segment:

<Proxy http://myspecific.url/> AuthType None </Proxy>

but that didn't quite do the trick.

Improve this question

1 Answer 1

Reset to default
4

Use Satisfy Any to exclude something from AuthType requirements.

If you can be more specific about what the URL is to be excluded and how your site is configured now, then I can be more specific about how this should be applied.

Improve this answer
1
  • I thought my description above was rather detailed ... what is missing? The specific URL I'm trying to exclude from basic auth is mysite.com/status. Truth be told, this question might not be so relevant to me now, because of this: serverfault.com/questions/371907/… Commented Mar 22, 2012 at 8:34

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.