Currently htaccess is denying all users. I want to only allow the JSON feed from wordpress to be accessible by all users
From the htaccess file's location, the feed url is:
./row/wordpress/wp-json/wp/v2/screen
Question
From what I understand, this is a "virtual" url created by rewrite rules. Since it's not an actual file and just an endpoint, how do I allow any user to access it?
Current Attempt
Here is my current attempt which blocks all users without a password. My Files node does nothing.
// root folder's .htaccess
AuthUserFile /var/www/domains/dev/.htpasswd
AuthType Basic
AuthName "Password Required"
Require user SecretUser
Order Deny,Allow
Deny from All
<Files "row/wordpress/wp-json/wp/v2/screen">
Allow from all
</Files>
Satisfy Any
Question
How can I get the virtual path of ./row/wordpress/wp-json/wp/v2/screen to be viewable my all visitors?
** edit **
I've since tried both
<Directory row/wordpress/wp-json/v2/>
Allow from All
</Directory>
<Location row/wordpress/wp-json/v2/>
Allow from All
</Location>
With no success, they both cause a 501
Best Answer
Here are two different approaches to allow a single url, whether it refers to physical file or not, to bypass basic password authentication:
Option 1: Allow a single URL through the password protection:
Option 2: Apply password protection to all requests that don't match a specific URL (this option requires Apache 2.4):