How to protect a virtualhost by Both IP OR password

Question

I have managed to password protect a virtualhost by using this:

     <Proxy *>
            Order deny,allow
            Deny from all
            Allow from office-ip-1 office-ip-2
    </Proxy>

It works fine as far as it's accessed from our office (the IP used are office static IPs) . Now I want to give access to the web application for some people who might be working from home thus using different IPs (not static IP). So what I want to achieve is that if I am in the office , I can have access without password challenge but when am not in the office a basic auth challenge prompt should pop up.

Is it possible to have this hybrid setup in apache2 under ubuntu 12.04 ? If yes kindly show the way to do it.

Thanks

score 2 · Accepted Answer · edited Nov 11 '13 at 06:04

2

You can use Apache's Satisfy directive for that:

AuthType Basic
AuthName intranet
AuthUserFile /www/passwd/users
Require valid-user
Order allow,deny
Allow from internal.com
Satisfy any

More info in the Apache wiki.

edited Nov 11 '13 at 06:04

phoebus

8,380
1
31
30

answered Nov 10 '13 at 11:05

zhenech

1,492
9
13

How to protect a virtualhost by Both IP OR password

1 Answers1