2010-02-26, 21:06:52
Hi,
first of all, the new GetSimple version rocks!
But I'm concerned about security and I would love to secure the /admin folder with a simple .htaccess file, so that users cannot access the backend login form without first typing in a username and password
when I place my .htaccess file in the root folder of getsimple , that works, but of course that's blocking off any access to the website. When placing the file only in the /admin folder, it's not working anymore, it just gives a "cannot find this page" error.
I guess the reason for this is quite obvious: all URL's are routed through the /index.php file and the backend is not accessed directely by going to the /admin folder.
Is that correct? Is there a way to solve this and still only secure the /admin folder with .htaccess (AuthUserFile)
Thanks a lot!
first of all, the new GetSimple version rocks!
But I'm concerned about security and I would love to secure the /admin folder with a simple .htaccess file, so that users cannot access the backend login form without first typing in a username and password
when I place my .htaccess file in the root folder of getsimple , that works, but of course that's blocking off any access to the website. When placing the file only in the /admin folder, it's not working anymore, it just gives a "cannot find this page" error.
I guess the reason for this is quite obvious: all URL's are routed through the /index.php file and the backend is not accessed directely by going to the /admin folder.
Is that correct? Is there a way to solve this and still only secure the /admin folder with .htaccess (AuthUserFile)
Thanks a lot!