Laravel 5.2 - Basic Auth using .htpasswd

Question

I'm having trouble setting up a .htpasswd protected laravel project.

I tried adding the following to my .htaccess but it causes an internal server error (500) after I entered my credentials..

.htaccess content:

AuthUserFile .htpasswd
AuthType Basic
AuthName "Secured area"
Require valid-user

<IfModule mod_rewrite.c>
    <IfModule mod_negotiation.c>
        Options -MultiViews
    </IfModule>

    RewriteEngine On

    # Redirect Trailing Slashes If Not A Folder...
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule ^(.*)/$ /$1 [L,R=301]

    # Handle Front Controller...
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteRule ^ index.php [L]

    # Handle Authorization Header
    RewriteCond %{HTTP:Authorization} .
    RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
</IfModule>

And this is the current routes.php. Just in case it's something I should change in the routes.php:

Route::get('/', 'HomeController@index');

Route::auth();

Route::get('/home', 'HomeController@index');

I couldn't find anything useful on Google which still works under laravel 5.2 so I really hope someone out there has an idea :)

Internal server error with htpasswd, see http://stackoverflow.com/q/15476252/1741542 — Olaf Dietsche, Jun 11 '16 at 18:33

score 5 · Accepted Answer · answered Jun 11 '16 at 18:49

5

As @Olaf mentioned. changing this:

AuthUserFile .htpasswd

..into this:

AuthUserFile /absolute/server/path/.htpasswd

..did the trick. Thank you verry much!

answered Jun 11 '16 at 18:49

ThatMSG

1,456
1
16
27

I'm having the same issue. I have also mentioned `full path` to `htpasswd` but not working. Is your `.htaccess` file also inside `public`? – Azima Aug 21 '19 at 08:44
No - I didn't wanted to risk anything – ThatMSG Sep 09 '19 at 08:23
How do we allow only apis? and restrict web access using .htpasswd? – Akshay Apr 25 '20 at 07:35

Laravel 5.2 - Basic Auth using .htpasswd

1 Answers1