Cannot password protect a directory
I have attempted multiple times to set up a password-protected directory using Plesk. I follow the usual process (same as shown in the online tutorial). Plesk even generates the directory for me if it was not already there. However, when I acccess a PHP file inside the directory via my browser, I am not prompted for the username/password I created for that directory.
Does anyone know what I am doing wrong? Also... is it possible to protect a directory in a subdomain?
Tutorial link
Hello,
It is difficult to tell what is happening in your situation without investigating. Please PM me with your servers IP address, the domain name of the site, and the folder you are attempting to protect.
In case others are curious, our tutorial on this subject is here.
For anyone who comes upon this at a later date... it may take 5-10 minutes for the protection to become active on the folder you specify. Lyle suspected browser caching as the cause.
If you are trying to provide protection on a directory that is in a subdomain, this cannot be done with Plesk. There is however a .htaccess workaround method. Below are the steps required to do this:
Step 1
Create a file called .htaccess and upload it to the directory you wish to protect. The contents should be as follows:
Step 2Code:AuthType Basic AuthName "Type a prompt message here" AuthUserFile /usr/local/.htpasswd Require valid-user
Create a file called .htpasswd its contents should contain a username/password in the form of:
It is important to note that your password must be encrypted. You can go to a site such as http://www.kxs.net/support/htaccess_pw.htmlCode:username:password
Step 3
Upload the .htpasswd file and move it to /usr/local/. I used a SSH client to move the file from the web directory I uploaded it to.
Password protect directories on subdomain - Plesk
schizo, your solutions work very good. One suggestion that I could give is to use Plesk one step further so that you don't have to manually create/update the password file.
What I did was:
Step One
Create fake password protected directory on the main domain (domain -> Directories -> Add New Direcotry) with something that does not exist on the domain and can be easily identified, for example s-sample.
Step Two
Create the necessary users for that protected directory.
Step Three
Open your domain's base httpd configuration file, which will be on /var/www/vhosts/(domain)/conf/httpd.include
and loook for a line that contains
<Directory "/var/www/vhosts/(domain)/httpdocs/s-sample">.
Copy the lines between <Directory> and </Directory>, it should be something like:
Step FourCode:AuthType Basic AuthName "Restricted" AuthUserFile /var/www/vhosts/(domain)/pd/d..s-sample require valid-user
Create the .htaccess file using the text from step three, and place it on the directory that you wish to protect on the subdomain.
Done!
If everything went fine, now your browser should request a user name and password, as provided from Plesk's interface.
Hope it proves useful
Posting Permissions
Bookmarks