Appies
[ Table of Contents ]

Password Protect Folders

Password Protect Folders

Password protection of folders and all of their contents is a standard feature of most web servers.  Appies, however, makes this cryptic process very easy using web-based screens.

 Awesome Feature...

Just because you have information on the Web, does not mean it has to be public!  Many companies have their "Intranet" on the Web, accessible with a username and password.  This way, employees or other authenticated users can access the information from anywhere in the world.

There are essentially two types of password protection that Appies handles.  The first is what we call global authentication.  This is where a single username and password is used for multiple people.  This is fine for information that is not very secure, but secure enough that you would want to keep the general public from accessing.

The other type of password protection we call unique authentication.  This is where each user that accesses a private folder has his or her own username and password.  This is the most common form of access and is considered very secure, although more effort is needed to manage.

 Technical Note...

Appies Password protection uses .htacl files and will interfere if your application uses a .htaccess file, you will need to manually combine the files.

Choosing a Folder to Password Protect.  Begin by selecting a folder from the pulldown menu.  In this menu, is all of the folders that are available for password protection.  It may be obvious, but a folder must exist before it can be password protected.

 Be Careful...

When you delete a folder, and recreate it, the password protection is removed, even though the username and passwords associated with the file will still exist.  You will need to simply select the folder again in the password protection tool, and just click the "process" button to "reset" the password protection.

When you move, copy, or change the folder's name, you will have to reset the password protection from scratch.

Setting Password Protection.  Once you have selected your folder, you will be taken to a screen with the following options:

  • Remove password/IP authentication from this folder - Check this box when you want to remove the password protection on a folder that you have previously setup password protection for.
  • Delete all associated username/password and IP files too? - Check this box when your removal of the authentication is permanent.
  • name of the secure area - This is the name of the area that will be displayed in the authentication window when a user attempts to access the restricted area.
  • username / password authentication - Username/Password authentication requires users to enter a username/password pair to enter this area including any files or subdirectories within the directory. Each line should contain a username followed by a single space, followed by the password then a hard return (enter key).
  • allow access from everywhere except - IP/host based authentication checks the IP or hostname of the client attempting to access the folder or it's contents. Any IP addresses or hostnames in this list will be denied access. Partial IPs and hostnames can be used for a broader match.
  • deny access from everywhere except  - IP/host based authentication checks the IP or hostname of the client attempting to access the folder or it's contents. Only IP addresses or hostnames in this list will be allowed access. Partial IPs and hostnames can be used for a broader match.

When you have entered all of your information, click the "create / modify" button and the settings will immediately take place.

 Be Careful...

When setting authentication based on IP address or hostname, remember that many ISPs today using dynamic addressing, which means the IP address or hostname can and does frequently change.

 

[ Table of Contents ]
Copyright 2004-2007, Greentree Hosting, LLC.