• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

How would you password protect a file?

H

Hyperblaze

Lifer
I've done pass protecting a directory in apache before....ie....

AuthUserFile /z/ric/secret/.htpasswd
AuthGroupFile /dev/null
AuthName "Ric's protected files"
AuthType Basic

<Limit GET>
require valid-user
</Limit>

But this time, I'd like to pass protect a file....(but not the directory), has anyone ever done this before?

If so, how would you go about it?
 
I usually use a php script. I put the file outside of the document root for your webserver (somewhere like /var/files and my webdocs are in /var/www). Then I use the php script to authenicate the proper user/pass combo (you could use any means, htaccess auth, mysql table, hash file, etc. Then if the user/pass is correct I send headers telling the browser a file is coming, and then fopen the file and echo it to the browser.

Or you could make a folder and stick the file in it, and password protect that file. There might be a way to do it in apache, but I do not have 100% trust in apache because multiple users have the ablity to edit the apache config at my work. So I find all my security is best done though php where I have control.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top