pg.
Reputation: 2531
How to make htaccess demand a password on one domain (or IP) but not another
I have a website that works like this:
- dev.website.com (hosted @ 1.1.1.1)
- phil.website.com (hosted @ 1.1.1.2)
- www.website.com (hosted @ 1.1.1.3 & 1.1.1.4 served from load balancer @ 1.1.1.5)
They all use file that has these lines:
AuthType Basic
AuthName "Password Protected Area"
AuthUserFile /var/www/vhosts/website.com/.htpasswd
Require valid-user
I want to make it so that there is no password required for users looking at the load balancer. How do I accomplish this?
Upvotes: 1
Views: 114
Answers (1)
anubhava
Reputation: 785098
Use mod_envif directives:
SetEnvIf Remote_Addr ^(1\.1.\1\.3|1\.1.\1\.4)$ NO_AUTH
AuthType Basic
AuthName "Password Protected Area"
AuthUserFile /var/www/vhosts/website.com/.htpasswd
Require valid-user
Satisfy any
Order deny,allow
Deny from all
Allow from env=NO_AUTH
Upvotes: 1
Related Questions
- .htaccess / .htpasswd bypass if at a certain IP address
- Use HTTP Auth only if accessing a specific domain
- Getting .htaccess to allow access for specified IP, but request .htpasswd user + password if from any other IP
- How to set up basic authentication for some subdomains but not others using envif
- htaccess-protect a specific domain with password
- .htpasswd on specific subdomain
- Have sub directory not be password protected using Apache's .htaccess
- .htaccess password protection for specific domain
- Have .htaccess ask for password depending on domain name
- htaccess: only do [some lines of code] for one domain, no others