• Home
• About
• People
• News
• Events
• Research
• Courses
• Graduate Study
• Undergraduate Study
• Places
• Computing Systems
• Accounts
• After Hours
• Backups
• Copyright
• Disk Space
• Doc
• Education
• Email
• Ergonomics
• FTP
• Get Software
• Hardware
• Help
• Licenses
• Local Access
• Network
• New Users
• Policies
• Remote Access
• Research
• Search
• Snapshots
• Statistics
• Software
• Technical Reports
• Web
• Passwords
• Brown-only
• SWP
• Dynamic Content
• Web Authoring Guide
• Industrial Relations
• Alumni
• Contacts

Password-Protecting Your Web Pages

To password-protect a web directory, do the following:

Create a password file

	% htpasswd -c /pro/web/password/pwfile pwuser

Where pwfile is a unique filename for the pages you are protecting, and pwuser is a "web user" name for remote users to "log in" as. htpasswd will prompt for a password.

EXAMPLE:

	% htpasswd -c /pro/web/password/jsbhome jsb_visitor

If you will have many name/password pairs, you might wish to use dbmmanage instead of htpasswd, which provides more efficient password lookup on the server side.

Create an access control file in the directory you wish to protect

Create a file named .htaccess, for example:

	AuthName "Jsb's Home Page"
	AuthType Basic
	AuthUserFile /pro/web/password/jsbhome
	require user jsb_visitor

When prompted to log in, the user will see the string next to AuthName. The user must type in the name "jsb_visitor" and then the secret password.

Update the external web

EXAMPLE:

	% webupdate /pro/web/password/jsbhome /pro/web/web/people/jsb

And that's it!

For more details on the syntax of htaccess files, see the Apache web server documentation. (Hint: look at the Apache Directives page).

---

Page Owner: John Bazik

Last Modified: Tue Oct 2 09:50:20 2007