Password-protect access to an application with Apache
To configure Apache to request a username and password when accessing your application, follow these steps:
At the console, type the following commands. Remember to replace APPNAME, USERNAME and PASSWORD with your application name, desired username and desired password respectively.
$ cd installdir $ apache2/bin/htpasswd -cb apache2/APPNAME_users USERNAME PASSWORD
Edit the installdir/apps/APPNAME/conf/httpd-app.conf file and add the following lines. You also need to comment the Require all granted line as shown below:
<Directory "installdir/apps/APPNAME/htdocs"> ... AuthType Basic AuthName MyAuthName AuthUserFile "installdir/apache2/APPNAME_users" Require valid-user ... <IfVersion >= 2.3> # Require all granted </IfVersion> ... </Directory>
Restart the Apache server:
$ sudo installdir/ctlscript.sh restart apache
When accessing the application, you will see the following authentication popup window. Enter the username and password that you have defined in the first step:
To change the password later, run the htpasswd utility without the -c switch:
$ sudo installdir/apache2/bin/htpasswd installdir/apache2/APPNAME_users USERNAME