ProtectApache < Federation < TWiki

Skip to topic | Skip to bottom

Federation

Federation.ProtectApacher1.1 - 25 Aug 2007 - 14:06 - BrucLiongtopic end

Start of topic | Skip to actions

Protecting application in apache

There are 3 approaches:

placing protection in vhost config file

<Location /secretFolder>
   AuthType Basic
   AuthName “Secret folder authentication”
   ShibRequireSession on
   require valid-user
</Location>

enabling .htaccess to protect the folder
- edit vhost in apache and enable access to .htaccess on affected directory declaration
```
<Directory />
   AllowOverride AuthConfig, Limit, Options
   ...
</Directory>
```
- create .htaccess file at the folder that you'd want to protect with the following content
```
AuthType Basic
AuthName “Secret folder authentication”
ShibRequireSession on
require valid-user
```
using shibboleth.xml XML access control

End of topic
Skip to action links | Back to top

Edit | Attach image or document | Printable version | Raw text | More topic actions
Revisions: | r1.1 | Total page history | Backlinks

You are here: Federation > FrequentlyAskedQuestions > ProtectApache

to top

Copyright © 1999-2010 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback