Jaapze
Reputation: 742
codeigniter: protect controller with htaccess
I would like to protect 1 controller from my Codeigniter project with the following htaccess code placed in the root:
RewriteEngine on
RewriteCond %{HTTP_HOST} !^www\.
RewriteRule ^(.*)$ http://www.%{HTTP_HOST}/$1 [R=301,L]
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule .* index.php/$0 [PT,L]
<Files admin>
AuthName "admin"
AuthType Basic
AuthUserFile /home/domain/domains/domain.nl/.htpasswd/public_html/.htpasswd
require valid-user
</Files>
When i go to domain.nl/admin i do get a prompt asking for the credentials. But when i click cancel it still proceeds to the admin page. How can i fix this?
Upvotes: 2
Views: 3530
Answers (1)
Dino Babu
Reputation: 5809
Another simple way. Put this in top of your Admin Controller.
public function __construct() {
parent::__construct();
if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_USER'] != 'username' || $_SERVER['PHP_AUTH_PW'] != 'password') {
header('WWW-Authenticate: Basic realm="MyProject"');
header('HTTP/1.0 401 Unauthorized');
die('Access Denied');
}
}
Upvotes: 9
Related Questions
- Protect files in folder on hosting linux using codeigniter php
- Password protecting a single page using .htaccess and .htpasswd
- .htpasswd in codeigniter
- allow authentication for a specific controller in codeigniter using .htaccess
- CodeIgniter and htaccess - Protect a specific controller and its methods via AuthType?
- Remove .htaccess password protection from specific controller
- CodeIgniter protect admin controller with .htaccess
- prevent directory access
- Protect Codeigniter application during development
- How can I use htaccess to protect a subdirectory of codeigniter installation?