Apache Basic Authentication

Apache Basic Authentication

The Apache web server allows for per-directory configuration through the use of .htaccess files. Users can password protect directories using the built-in Basic Authentication mechanism. For more robust authentication schemes, users can consider using either Shibboleth, or the now-deprecated Webauth.

For more detailed information on this subject please see the Apache 2.2 authentication page.

With basic authentication, a web page maintainer can create a username/password combination which is required to access the contents of the given directory. The username and password are chosen by the web page maintainer; they are not related to any other system-wide usernames or passwords used to access other systems. Maintaining and distributing the credentials is the responsibility of the web page maintainer. To enable basic authentication on a web directory, perform the following steps.