Htaccess protection for some subdomain folders only

.htaccesshostingsubdomain

I have two site hosted as subdomains.

One of the site use subdomains as aliases for dynamic images requests.

site1.example.com
site2.example.com
sub1.example.com -> same as site1
sub2.example.com -> same as site1
sub3.example.com -> same as site1

Dynamic images are requested by subX.example.com/images.php?.

In the htaccess I want to:

limit access to site1 and site2 (same user and password)
have no authentication prompt on subXs
redirect everything to images.php for subXs requests

Limitations:
I don't have access to httpd.conf so no directory block

I tested SetEnv, SetEnvIf, IfDefine with no success.

Best Answer

To handle the first 2 items, you need to use the SetEnvIf along with a Satisfy, something like this:

SetEnvIf Host site1.example.com need_auth
SetEnvIf Host site2.example.com need_auth

Order allow,deny

# setup whatever auth stuff you need here
AuthName "Private"
AuthType Basic
AuthBasicProvider file
AuthUserFile /etc/apache2/pwd

# here's where you actually check the credentials and env
Require valid-user
Allow from env=!need_auth
Satisfy Any

To do the redirect, you can use mod_rewrite. I'm not exactly sure what you mean, but if you want everything redirected to images.php, you can do something like:

RewriteCond %{ENV:need_auth} ^.*$
RewriteRule ^(.*)$ http://site1.example.com/images.php [R]

It would probably be a lot easier if you added a RedirectMatch in the vhost file for the subX.example.com domains. The .htaccess file is designed to be per-directory based configuration, and not host-based. It's not really designed to do the things you're asking.

Related Solutions

How to use htaccess to rewrite to new base directory for files

The ^(.*)$ pattern captures the complete path component of the URL which always begins with a /, therefore you should probably remove the last / from your RewriteRule. This is how it should be:

RewriteEngine On
RewriteRule ^(.*)$ /subdomains/sub1/httpdocs$1

Or make the pattern match everything except the first /:

RewriteEngine On
RewriteRule ^/(.*)$ /subdomains/sub1/httpdocs/$1

How Do I Set Up a Subdomain with a Separate Webhost and Domain Registrar

1) just a note. You can't set up sub.domain.com without registrar's help, unless domain.com is running your own DNS server. I understand, however, that it is already done.

2) things that must be in the existing Apache httpd.conf, or you are out of luck:

a) RewriteEngine enabled. b) Apache accepting requests for sub.domain.com

If both those things are OK, then I suppose you should be able to do rewrite via .htaccess like this:

RewriteEngine On

RewriteCond %{HTTP_HOST}  domain.com [NC]
RewriteCond %{HTTP_HOST}  !^$
RewriteRule ^/sub(.*) http://sub.domain.com/$1 [R=301,L]

Details may vary depending on what your underlying web pages have configured for site URL and whether you want to use single sub.domain or more, etc.

Best Answer

Related Solutions

How to use htaccess to rewrite to new base directory for files

How Do I Set Up a Subdomain with a Separate Webhost and Domain Registrar

Related Topic