HTACCESS Control

Password protecting a web directory can be done by using Novell-based authentication for any web server running asampsp and mod_auth_cutoken by creating a text file called
"htaccess.txt" (all lowercase and no quotes).  The level of security varies with the options outlined in the file.

---

HTACCESS file Example:

NovellAuth on 
AuthName "Novell Tree"  
AuthType login.clemson.edu

<Limit GET POST> 
require valid-user 
</Limit> 

This example will allow anyone with a valid clemson userid and password access. If you wanted to limit it to specific userids, then you would replace the line:

require valid-user 

with something like:

require user cyclist 
require user tharon 
require user fred 

This would allow only the users cyclist, tharon and fred access. You can also limit access based on eDirectory groups. If you wanted only the members of the group .everyone.groups.ccit.clemsonu to have access, then you would replace the line with:

require group .everyone.groups.dcit.clemsonu 

You can have multiple group lines as well. The only things to lookout for with groups are that the inital period (.) is required and if the eDirectory groupname has spaces in it, then you must replace the spaces with plus signs. So, to limit access to the eDirectory group
.Everyone Daps.groups.ccit.clemsonu the line would look like:

require group .everyone+daps.groups.ccit.clemsonu 

The group names are not case sensitive.  This should work on any directory that is being  served by one of CCIT's supported web servers.

You can also visit the OWS Forum on HTACCESS.