How to password protect a subdirectory in your home page

FILES ON THE WEB SERVER ARE ALWAYS READABLE BY ANYONE WITH A UNIX ACCOUNT (you cannot prevent this).
This does not prevent other ME users from accessing the files from unix client machines through NFS shares or from accessing them through the Windows Shares
If your security needs are that great - you should encrypt the content.
All WEB Passwords are sent in the clear and can be snooped.
NOTE: Make sure your htpasswd and htgroup files are outside of the public-html directory, or else someone could fetch them and try to crack the passwords.

NOTE ABOUT PATHS: the webserver sees /home/webhome-menet/paulfm/ as /homedirs/h/paulfm/
/home/webhome-menet/paulfm/.htaccess/ as /homedirs/h/paulfm/.htaccess/
and /home/webhome-menet/paulfm/public-html/ as /homedirs/h/paulfm/public-html/.
It is extremely important that all of the files reference things from the web-server's point of view.

MORE COMPLETE PATH INFO

URL Path Unix Client location Real location on Web Server
http://www.me.umn.edu/ /g/www-me/ /data/me/
http://www.menet.umn.edu/ /g/www-menet/ /data/menet/
http://www.menet.umn.edu/~{user}/ /home/webhome-menet/{user}/public-html/ /homedirs/h/{user}/public-html/

MORE COMPLETE PATH INFO
URL Path	Unix Client location	Real location on Web Server
http://www.me.umn.edu/	/g/www-me/	/data/me/
http://www.menet.umn.edu/	/g/www-menet/	/data/menet/
http://www.menet.umn.edu/~{user}/	/home/webhome-menet/{user}/public-html/	/homedirs/h/{user}/public-html/

NOTE: use relative paths in web pages or use the Real Location (references should never be made to /g, /home, /h, or /stage).

Step 1: Create a .htaccess file in the directory you wish to protect that looks similar to the following (make sure to use a unix text editor).

	AuthType Basic
	AuthUserFile /homdirs/h/paulfm/.htauth/htpasswd
	AuthGroupFile /homdirs/h/paulfm/.htauth/htgroup
	AuthName private
	<Limit GET POST>
	require group private
	order allow,deny
	allow from all
	</Limit>

Example (Protect my entire person web space):

	vi /home/webhome-menet/public-html/.htaccess

Step 2: Create your htpasswd file with the htpasswd command:

	htpasswd {passwd_file} {user_name}

Example:

	htpasswd -c /home/webhome-menet/paulfm/.htauth/htpasswd paulfm
	htpasswd /home/webhome-menet/paulfm/.htauth/htpasswd user1
	htpasswd /home/webhome-menet/paulfm/.htauth/htpasswd user2

It should look something like the following:

	paulfm:NmG46He.uBQAc
	user1:gNm36He9cBabc
	user2:6He9cBabcgNm3

Step 3: Create your htgroup file (with a unix text editor).
Example:
```
	vi /home/webhome-menet/paulfm/.htauth/htgroup
	
```
It should look something like:
```
	private:paulfm user1 user2
	
```
NOTE: The group name "private" needs to match the specified group name in the .htaccess file in the "require group private" line (case sensitive).