How to exclude a sub-folder from HTaccess RewriteRule

.htaccessapache-2.2password-protectedrewriterewritecond

I have WordPress installed in my root directory, for which a RewriteRule is in place.

I need to password-protect a subfolder ("blue"), so I set the htaccess in that folder as such.

Problem is that the root htaccess RewriteRule is applying to "blue" and thus I get a 404 in the main WordPress site (instead of opening the password dialog for the subfolder).

Here's the root htaccess:

RewriteEngine on

<Files 403.shtml>
order allow,deny
allow from all
</Files>     

<IfModule mod_rewrite.c>
RewriteEngine On
RewriteBase /
RewriteCond %{REQUEST_FILENAME} !-f
RewriteCond %{REQUEST_FILENAME} !-d
RewriteRule . /index.php [L]
</IfModule>

I tried inserting this as the second line, to no avail:

RewriteRule ^(blue)($|/) - [L]

Also tried inserting this before the index.php RewriteRule:

RewriteCond %{REQUEST_URI} !^/blue/

That didn't work either.

Also inserted this into the subfolder's htaccess, which didn't work either:

<IfModule mod_rewrite.c> RewriteEngine off </IfModule>

Any ideas?

Best Answer

Try dropping the leading / from the RewriteCond

RewriteCond %{REQUEST_URI} !^blue/

EDIT: It should work without the RewriteCond as the first two conditions should cover it unless you're doing more rewrites in that directory or something.

Are you using custom error pages? Something is changing the Request_URI so that it no longer matches any of the conditions.

If you're not on a shared host or if your host supports it try setting up a rewrite log this will tell you exactly what is going on.

Related Solutions

Nginx rewrite, from htaccess-files

First, you don't need the location ~* ^/(css|img|js|flv|swf|download)/(.+)$ block, because it doesn't change anything. Also, in general, root directory inside location blocks isn't what you usually want, alias is the thing you most likely want.

But to the actual problem, try adding these location blocks:

location /v1/documentation/ {
    rewrite ^/v1/documentation/(.+)$ /v1/public/documentation/$1 last;
}

location /v1/examples/ {
    rewrite ^/v1/examples/(.+)$ /v1/public/examples/$1 last;
}

An optional optimization for your @rewrite block

location @rewrite {
    rewrite ^ /v1/public/index.php?_url=$uri break;
}

Nginx – Image not display after using nginx

The index.php file should be processed by a different location block, so (hopefully) all you need to do is rewrite the non-php files at that location using:

location ^~ /wp-content/uploads/gdwpm_images {
    rewrite ^/(.*)$ /wp-content/uploads/gdwpm_images/index.php?imgid=$1 last;
}

However, the main problem is that .php files below /uploads/ are explicitly forbidden by the location ~* /(?:uploads|files)/.*\.php$ rule.

Rather than open that rule and risk upload exploits - it may be better to move and rename index.php to somewhere outside of the protected area.

EDIT2: Added ^~ to prevent the location being overridden by the location ~* ^.+\.(ogg|ogv|svg|svgz|eot|otf|woff|mp4|ttf|rss|atom|jpg|jpeg|gif|png|ico|zip|tgz|gz|rar|bz2|doc|xls|exe|ppt|tar|mid|midi|wav|bmp|rtf)$ block.

Best Answer

Related Solutions

Nginx rewrite, from htaccess-files

Nginx – Image not display after using nginx

Related Topic