[users@httpd] Password protecting a directory without .htaccess

[theshz <th...@gmail.com>]

Hi, I'm trying to password protect a directory. The usual approach is to use
.htaccess files, which requires BasicAuthentication. The problem I have is
that my website already has a custom login/logout feature, so I can't ask
the user to type in name/password again to access the protected directory.
When the user is logged in, I'm keeping a variable in the session to
indicate that, I'd like to check this variable to allow/disallow access to
the directory. How can I achieve this?

(This seems to be the common feature out there, I think very few are using
the BasicAuthentication's usual popup window to enter name/password, instead
almost every site has their own login/logout page. How do they allow access
to some static contents?)

Thanks.

theshz



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org