Password-protect a directory, but not that directory's files?

passwords apache-http-server

Solution 1:

Try this in your .htaccess:

Require valid-user

<Files ?*>
    Order allow,deny
    Allow from all
    Satisfy any
</Files>

Here Require valid-user requires any known login. Then you amend this restriction for files with at least one character in their name – this is what the glob pattern ?* for the <Files> section will match –, which effectively means the enclosed rules apply to files, but not to directories.

In the amended rules for files, the key is Satisfy any. It allows the authorization to satisfied by either credentials or IP address. Then you allow any IP address to pass, so requests are always authorised.

So now browsing this directory or any of its subdirectories will require a login, but directly retrieving a file from it won’t.

Which is what you wanted.

Related

How to read old non-finalized CDs
Software for editing XML [closed]
Rsync to stdout?
How to know which program or service take long time at and after PC Starting?
Maximum number of DNS servers in Windows
What exactly is Windows 7 doing when it says "Identifying" a network connection?
Going from Windows to Mac - Want identical hotkeys
Excel - conditional formatting in Shapes?
Hard Drive read speed below 2 MB/sec. Normal? How to improve?
How can I make a Windows folder "virtual" like you can with directories in Linux using tmpfs?
How to recover/recreate mysql's default 'mysql' database
How do I dynamically enable/disable links with jQuery?