Cape.Computing Cape.Computing


You Are Here: Home : cape.computing : Developers' Info
Company Information


Electronic Commerce Services



Technical Support And References
Getting On-LineGetting On-Line
On-Line SupportOn-Line Support
Dial-Up Number FinderDial-Up Number Finder
Spam QuestionsSpam Questions
Tech Support LinksTech Support Links
Developers' InfoDevelopers' Info
FAQsFAQs



People And Places Connected By Cape.Com



Explore Cape.Cod, New England and the World



E-Tools
Online Accounting
Webmail
Domain Registration
Search Our Site
Contact Cape.Com
Sign Up Now!




*
Print Page

Return To Home Page

User Authentication with htaccess

Glossary Items:
.htaccess
CGI
password
SSH
web-based

Web-based authentication denies web access to visitors who do not give a valid username and password. This feature allows webmasters to restrict access to certain directories. The usernames and encrypted passwords are maintained by the webmaster and can be edited from the command line, or, via a cgi script.

Example

Assuming we want to protect the directory, public_html/admin/

  1. SSH to your site and create a file called .htaccess within the public_html/admin/ directory. The contents of this file should be:
    AuthUserFile /home/myusername/public_html/admin/.htpasswd
AuthGroupFile /dev/null
AuthName "Welcome to MyDomain.com"
AuthType Basic

require valid-user
  2. change directories into public_html/admin and run
    htpasswd -c .htpasswd username
    to create the file and add "username" as the first user. The program will prompt you for a password, then verify by asking again. You will not see the password when entering it here. To add more users, use the same command without the -c switch: htpasswd .htpasswd jane will add username "jane" to your .htpasswd file. To delete users, open the .htpasswd file and delete the appropriate lines.

The .htaccess file affects the directory in which it is placed, so in this example, any visitor requesting http://mydoamin.com/admin/ would be presented with an authentication request.

The .htaccess file also affects directories recursively below it. Therefore, requesting http://mydoamin.com/admin/somepath/ would yeild the same authentication request unless /home/myusername/public_html/cgi-bin/admin/somepath had a .htaccess file of its own.

The first line, starting with AuthUserFile, tells the webserver where to find your username/password file, and, identifies its file name.

The AuthName in the example, "Welcome to MyDomain.com" is presented to the visitor and used in the authentication request.

Related Pages

CGI development, Telnet Access at Cape.Com
Having SSH/Telnet access to your site is a must if you'll be developing customized CGI scripts.
*Printer Friendly Version

The information presented in this section is deemed accurate but is not guaranteed. It is provided as a free service to our subscribers and clients. Additionally, Cape.Com, Inc. exercises no editorial control over any links that are outside the www.cape.com domain and the content of these sites does not necessarily represent the views and opinions of our Company, its employees or clients.

You Are Here: Home : cape.computing : Developers' Info
509 Falmouth Rd, Mashpee, MA 02649 - 508-539-9500 - © Cape.Com Inc. All rights reserved.