Navigate
X

Basic password protection for Apache2 on Ubuntu

This is a relatively trivial topic, but comes up quite often. For securing content on a server, you’ll often want to password protect entire domains or paths. Add the following to the correct block in your httpd.conf and you should be ready to go.

If you have a complex environment, you may want to consider having individual password files for each asset.


<Location />
AuthType Basic
AuthName "Restricted Files"
AuthUserFile /etc/apache2/.htpasswd
Require valid-user
</Location>

To create/clobber a new file for the first user:
sudo htpasswd -c /etc/apache2/.htpasswd YOURUSER

To add additional users:
sudo htpasswd /etc/apache2/.htpasswd YOURUSER
(repeat for new users without the -c as that creates/clobbers the file)

Tags: apacheauthenticationbasicfolderhttpdlinuxloginpasswordubuntuuser
skotfred: https://www.giantgeek.com/ https//www.skotfred.com/
Related Post
  1. Gradle dependency versions plugin

    Developers often have a lot on their plates, maintaining current version of their library dependencies…

  2. Clear-Site-Data HTTP Header

    In an effort to improve security on the client-side modern browsers have introduced a means…

  3. Global Privacy Control (GPC) – Sec-GPC HTTP Header – /.well-known/gpc.json file

    GPC is the latest attempt at allowing customers to specify how their browsing data is…