prevent direct URL access to php and html pages via .htaccess

Question

I know direct URL access can be prevented via .htaccess rules but I don't know much about meta-chars or escaping.

these are the files in my xammp/htdocs folder, accessed using localhost:

index.php
createScheme.php
several someother.php

I want direct access to be enabled only for index.php and createScheme.php and all others pages should be blocked against direct access.

Please help!

Possible duplicate of [(htaccess) How to prevent a file from DIRECT URL ACCESS?](http://stackoverflow.com/questions/10236717/htaccess-how-to-prevent-a-file-from-direct-url-access) — Chris H., Jul 19 '16 at 18:19

score 2 · Accepted Answer · answered Jul 19 '16 at 17:09

This .htaccess file will only allow users to open index.php. Attempts to access any other files will result in a 403-error.

Order deny,allow
Deny from all

<Files "index.php">
    Allow from all
</Files>

If you also want to use authentication for some of the files, you may simply add the content from your current file at the end of my example.

1 Answers1